CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

4.3CVSS5.8AI score0.07189EPSS

CVE-2002-2062

Cross-site scripting XSS vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP...

NVD•added 2002/12/31 5:0 a.m.•8 views

CVE-2002-2044

Cross-site scripting XSS vulnerability in xstatadmin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action...

4.3CVSS5.7AI score0.00613EPSS

Exploits1References5

NVD•added 2002/12/31 5:0 a.m.•17 views

CVE-2002-1802

Cross-site scripting XSS vulnerability in Xoops 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when submitting news...

4.3CVSS5.7AI score0.00905EPSS

NVD•added 2002/12/31 5:0 a.m.•11 views

CVE-2002-1803

Cross-site scripting XSS vulnerability in PHP-Nuke 6.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag...

4.3CVSS5.7AI score0.00158EPSS

NVD•added 2002/12/31 5:0 a.m.•8 views

CVE-2002-2193

Cross-site scripting XSS vulnerability in mojo.cgi for Mojo Mail 2.7 allows remote attackers to inject arbitrary web script via the email parameter...

4.3CVSS5.9AI score0.00519EPSS

NVD•added 2002/12/31 5:0 a.m.•7 views

CVE-2002-1680

Cross-site scripting XSS vulnerability in CGI Online Worldweb Shopping 1.1 a.k.a. COWS allows remote attackers to execute arbitrary script as other users by injecting script into 1 diagnose.cgi or 2 compatible.cgi...

4.3CVSS6.3AI score0.00346EPSS

Exploits0References4

NVD•added 2002/12/31 5:0 a.m.•17 views

CVE-2002-1950

Cross-site scripting XSS vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the 1 the email parameter of add.php or 2 the banner URL banurl parameter in the main list...

4.3CVSS5.7AI score0.00396EPSS

4.3CVSS5.7AI score0.02237EPSS

CVE-2002-1804

Cross-site scripting XSS vulnerability in NPDS 4.8 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag...

NVD•added 2002/12/31 5:0 a.m.•7 views

CVE-2002-1901

Cross-site scripting XSS vulnerability in Bodo Bauer BBGallery 1.0 allows remote attackers to inject arbitrary web script or HTML via image tags...

4.3CVSS5.7AI score0.00297EPSS

Exploits0References1

NVD•added 2002/12/31 5:0 a.m.•15 views

CVE-2002-2192

Cross-site scripting XSS vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via 1 a Host: header when DNS wildcards are supported or 2 the query string in a "dir" request to indexed folders...

4.3CVSS6.2AI score0.01003EPSS

Exploits1References5

NVD•added 2002/12/31 5:0 a.m.•12 views

CVE-2002-2422

Cross-site scripting XSS vulnerability in Compaq Insight Management Agents 2.0, 2.1, 3.6.0, 4.2 and 4.3.7 allows remote attackers to inject arbitrary web script or HTML via a URL, which inserts the script into the resulting error message...

4.3CVSS5.7AI score0.00414EPSS

Exploits1References5

NVD•added 2002/12/31 5:0 a.m.•17 views

CVE-2002-1702

Cross-site scripting vulnerability XSS in DeltaScripts PHP Classifieds 6.0.5 allows remote attackers to execute arbitrary script as other users via the URL parameter...

4.3CVSS6.7AI score0.00791EPSS

NVD•added 2002/12/31 5:0 a.m.•8 views

CVE-2002-2362

Cross-site scripting XSS vulnerability in formheader.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter...

4.3CVSS5.7AI score0.00564EPSS

NVD•added 2002/12/31 5:0 a.m.•9 views

CVE-2002-2330

Cross-site scripting XSS vulnerability in stat.pl in StatsPlus 1.25 allows remote attackers to inject arbitrary web script or HTML via 1 HTTPUSERAGENT or 2 HTTPREFERER, which is written to stats.html and executed in client browsers...

5CVSS5.8AI score0.004EPSS

Exploits0References3

4.3CVSS5.7AI score0.00564EPSS

CVE-2002-2318

Cross-site scripting XSS vulnerability in Falcon web server 2.0.0.1009 through 2.0.0.1021 allows remote attackers to inject arbitrary web script or HTML via the URI, which is inserted into 301 error messages and executed by 404 error messages...

NVD•added 2002/12/31 5:0 a.m.•13 views

CVE-2002-1995

Cross-site scripting XSS vulnerability in phptonuke.php for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the filnavn parameter...

4.3CVSS5.8AI score0.00519EPSS

NVD•added 2002/12/31 5:0 a.m.•11 views

CVE-2002-2296

Cross-site scripting XSS vulnerability in YaBB.pl in Yet Another Bulletin Board YaBB 1 Gold SP 1 allows remote attackers to inject arbitrary web script or HTML via the num parameter...

4.3CVSS5.7AI score0.0059EPSS

4.3CVSS5.7AI score0.00401EPSS

CVE-2002-1965

Cross-site scripting XSS vulnerability in Errors.gsl in Imatix Xitami 2.5b4 and 2.5b5 allows remote attackers to inject arbitrary web script or HTML via the 1 Javascript events, as demonstrated via an onerror event in an IMG SRC tag or 2 User-Agent field in an HTTP GET request...