Lucene search

[email protected]NVD:CVE-2001-1199

HistoryDec 17, 2001 - 5:00 a.m.

CVE-2001-1199

2001-12-1705:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

High

EPSS

0.094

Percentile

94.7%

JSON

Cross-site scripting vulnerability in agora.cgi for Agora 3.0a through 4.0g, when debug mode is enabled, allows remote attackers to execute Javascript on other clients via the cart_id parameter.

Affected configurations

Nvd

Node

steve_kneizysagora.cgiMatch3.2

steve_kneizysagora.cgiMatch3.2a

steve_kneizysagora.cgiMatch3.2b

steve_kneizysagora.cgiMatch3.2c

steve_kneizysagora.cgiMatch3.2d

steve_kneizysagora.cgiMatch3.2e

steve_kneizysagora.cgiMatch3.2f

steve_kneizysagora.cgiMatch3.2g

steve_kneizysagora.cgiMatch3.2h

steve_kneizysagora.cgiMatch3.2i

steve_kneizysagora.cgiMatch3.2j

steve_kneizysagora.cgiMatch3.2ja

steve_kneizysagora.cgiMatch3.2k

steve_kneizysagora.cgiMatch3.2l

steve_kneizysagora.cgiMatch3.2m

steve_kneizysagora.cgiMatch3.2n

steve_kneizysagora.cgiMatch3.2p

steve_kneizysagora.cgiMatch3.2q

steve_kneizysagora.cgiMatch3.2r

steve_kneizysagora.cgiMatch3.3a

steve_kneizysagora.cgiMatch3.3b

steve_kneizysagora.cgiMatch3.3c

steve_kneizysagora.cgiMatch3.3d

steve_kneizysagora.cgiMatch3.3e

steve_kneizysagora.cgiMatch3.3f

steve_kneizysagora.cgiMatch3.3i

steve_kneizysagora.cgiMatch3.3j

steve_kneizysagora.cgiMatch4.0

steve_kneizysagora.cgiMatch4.0a

steve_kneizysagora.cgiMatch4.0b

steve_kneizysagora.cgiMatch4.0c

steve_kneizysagora.cgiMatch4.0d

VendorProductVersionCPE
steve_kneizysagora.cgi3.2cpe:2.3:a:steve_kneizys:agora.cgi:3.2:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2acpe:2.3:a:steve_kneizys:agora.cgi:3.2a:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2bcpe:2.3:a:steve_kneizys:agora.cgi:3.2b:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2ccpe:2.3:a:steve_kneizys:agora.cgi:3.2c:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2dcpe:2.3:a:steve_kneizys:agora.cgi:3.2d:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2ecpe:2.3:a:steve_kneizys:agora.cgi:3.2e:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2fcpe:2.3:a:steve_kneizys:agora.cgi:3.2f:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2gcpe:2.3:a:steve_kneizys:agora.cgi:3.2g:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2hcpe:2.3:a:steve_kneizys:agora.cgi:3.2h:*:*:*:*:*:*:*
steve_kneizysagora.cgi3.2icpe:2.3:a:steve_kneizys:agora.cgi:3.2i:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
steve_kneizys	agora.cgi	3.2	cpe:2.3:a:steve_kneizys:agora.cgi:3.2:::::::*
steve_kneizys	agora.cgi	3.2a	cpe:2.3:a:steve_kneizys:agora.cgi:3.2a:::::::*
steve_kneizys	agora.cgi	3.2b	cpe:2.3:a:steve_kneizys:agora.cgi:3.2b:::::::*
steve_kneizys	agora.cgi	3.2c	cpe:2.3:a:steve_kneizys:agora.cgi:3.2c:::::::*
steve_kneizys	agora.cgi	3.2d	cpe:2.3:a:steve_kneizys:agora.cgi:3.2d:::::::*
steve_kneizys	agora.cgi	3.2e	cpe:2.3:a:steve_kneizys:agora.cgi:3.2e:::::::*
steve_kneizys	agora.cgi	3.2f	cpe:2.3:a:steve_kneizys:agora.cgi:3.2f:::::::*
steve_kneizys	agora.cgi	3.2g	cpe:2.3:a:steve_kneizys:agora.cgi:3.2g:::::::*
steve_kneizys	agora.cgi	3.2h	cpe:2.3:a:steve_kneizys:agora.cgi:3.2h:::::::*
steve_kneizys	agora.cgi	3.2i	cpe:2.3:a:steve_kneizys:agora.cgi:3.2i:::::::*