4.3
CVE-2002-1732
- EPSS 1.37%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:53
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple cross-site scripting (XSS) vulnerabilities in Actinic Catalog 4.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the query string argument to certain .pl files, (2) the REFPAGE parameter to ca000007.pl, (3) PRODREF parameter to ss000007.pl, or (4) hop parameter to ca000001.pl.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Actinic ≫ Actinic Catalog Version4.7
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.37% | 0.683 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://securitytracker.com/id?1003502
http://www.attrition.org/pipermail/vim/2006-July/000929.html
http://www.osvdb.org/27095
http://www.osvdb.org/27096
http://www.osvdb.org/27097
http://www.osvdb.org/27098
http://www.securityfocus.com/bid/4042
https://exchange.xforce.ibmcloud.com/vulnerabilities/8180