Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Open Source Development NetworkSlashcode2.2.1

3 matches found

CVE
CVEadded 2005/06/21 4:0 a.m.35 views

CVE-2002-1681

Cross-site scripting (XSS) vulnerability in Slashcode CVS releases June 17 through July 1 2002 allows remote attackers to execute arbitrary script as other users by injecting script into the paragraph tag.

6.8CVSS6.6AI score0.00855EPSS
CVE
CVEadded 2003/04/02 5:0 a.m.31 views

CVE-2002-0292

Cross-site scripting vulnerability in Slash before 2.2.5, as used in Slashcode and elsewhere, allows remote attackers to steal cookies and authentication information from other users via Javascript in a URL, possibly in the formkey field.

2.6CVSS6.8AI score0.0044EPSS
CVE
CVEadded 2005/06/21 4:0 a.m.29 views

CVE-2002-1748

Unknown vulnerability in Slash 2.1.x and 2.2 through 2.2.2, as used in Slashcode, allows remote authenticated users to gain access to arbitrary accounts.

7.2CVSS7AI score0.00424EPSS