Lucene search
HistoryOct 04, 2002 - 4:00 a.m.
CVE-2002-0955
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.9
Confidence
High
EPSS
0.031
Percentile
91.1%
Cross-site scripting vulnerability in YaBB.cgi for Yet Another Bulletin Board (YaBB) 1 Gold SP1 and earlier allows remote attackers to execute arbitrary script as other web site visitors via script in the num parameter, which is not filtered in the resulting error message.
Affected configurations
Node
yabbyabbMatch1_gold_sp_1
Related
cvelist
cvelist
CVE-2002-0955
2002-08-31 04:00:00
cve
cve
CVE-2002-0955
2002-10-04 04:00:00
exploitdb
exploitdb
YaBB 1 - Invalid Topic Error Page Cross-Site Scripting
2002-06-21 00:00:00
openvas
openvas
Detection of various dangerous CGI scripts (HTTP) - Active Check
2005-11-03 00:00:00
nessus
nessus
Multiple Dangerous CGI Script Detection
2003-06-17 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.9
Confidence
High
EPSS
0.031
Percentile
91.1%
Related for NVD:CVE-2002-0955