CVE-2002-2129 in w-Agorainformation

Résumé

par MITRE

Cross-site scripting vulnerability (XSS) in editform.php for w-Agora 4.1.5 allows remote attackers to execute arbitrary web script via an arbitrary form field name containing the script, which is echoed back to the user when displaying the form.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

16/11/2005

Divulgation

31/12/2002

Modérer

accepté

Entrée

VDB-19771

CPE

prêt

CWE

CWE-80 (confirmé)

Exploitation

Télécharger

CVSS

4.3 (NVD)

EPSS

0.03613

KEV

non

Activités

très faible

Secteur

Agriculture, Lawfirm, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-2129
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-2129
CVE Details	https://www.cvedetails.com/cve/CVE-2002-2129/

◂ Précédent Aperçu Suivant ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!