CVE-2002-2378

Cross-site scripting XSS vulnerability in AN HTTP 1.41d allows remote attackers to inject arbitrary web script or HTML via a colon : in the query string, which is inserted into the resulting error page...

CVE-2002-2348

Cross-site scripting XSS vulnerability in athcgi.exe in Authoria HR allows remote attackers to inject arbitrary web script or HTML via the command parameter...

CVE-2002-1899

Cross-site scripting XSS vulnerability in IceWarp Web Mail 3.3.3 and 3.4.5 allows remote attackers to inject arbitrary web script or HTML via the "Full Name" addressname parameter...

CVE-2002-2189

Cross-site scripting XSS vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link...

CVE-2002-2055

Cross-site scripting XSS vulnerability in userlog.php in TeeKai Tracking Online 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

CVE-2002-1853

Cross-site scripting XSS vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web script or HTML via the subject of a newsgroup post, which is not properly handled by 1 myarticles.php, 2 search.php, 3 stats.php, or 4 standard.lib.php...

CVE-2002-2021

Cross-site scripting XSS vulnerability in WoltLab Burning Board wbboard 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the message parameter...

CVE-2002-1733

Cross-site scripting XSS vulnerability in the web-based message board in Prospero Technologies allows remote attackers to inject arbitrary web script or HTML via a message board post...

CVE-2002-1334

Cross-site scripting XSS vulnerability in BizDesign ImageFolio 3.01 and earlier allows remote attackers to execute arbitrary web script as other users via 1 the direct parameter in imageFolio.cgi, or 2 nph-build.cgi...

CVE-2002-1009

Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the 1 "Name" or 2 "E-mail" parameters...

CVE-2002-1027

Cross-site scripting vulnerability in the default HTTP 500 error script 500error.jsp for Macromedia Sitespring 1.2.0 277.1 allows remote attackers to execute arbitrary web script via a link to 500error.jsp with the script in 1the et parameter...

CVE-2002-1008

CVE-2002-1008 describes a cross-site scripting vulnerability in PowerBASIC urlcount.cgi, included with Lil’ HTTP web server. The flaw allows remote attackers to induce execution of web script in another browser by crafting a request to urlcount.cgi that contains unfiltered script, particularly wh...