Badblue Security Vulnerabilities and Issues — Badblue CVE List

Lucene search

Working Resources Inc.Badblue

4 matches found

CVE•added 2005/06/28 4:0 a.m.•48 views

CVE-2002-1973

Buffer overflow in CHttpServer::OnParseError in the ISAPI extension (Isapi.cpp) when built using Microsoft Foundation Class (MFC) static libraries in Visual C++ 5.0, and 6.0 before SP3, as used in multiple products including BadBlue, allows remote attackers to cause a denial of service (access viol...

7.5CVSS8.3AI score0.60233EPSS

CVE•added 2005/06/21 4:0 a.m.•37 views

CVE-2002-1685

Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI.

4.3CVSS6.9AI score0.00519EPSS

CVE•added 2005/06/21 4:0 a.m.•35 views

CVE-2002-1683

Cross-site scripting (XSS) vulnerability in BadBlue Personal Edition 1.7.3 allows remote attackers to execute arbitrary script as other users by injecting script into the cleanSearchString() function.

4.3CVSS6.6AI score0.00401EPSS

CVE•added 2005/06/21 4:0 a.m.•35 views

CVE-2002-1684

Directory traversal vulnerability in (1) Deerfield D2Gfx 1.0.2 or (2) BadBlue Enterprise Edition 1.5.x and BadBlue Personal Edition 1.5.6 allows remote attackers to read arbitrary files via a ../ (dot dot slash) in the script used to read Microsoft Office documents.

5CVSS7AI score0.00229EPSS