1. CVE-Search
  2. CVE-2002-0459
ID CVE-2002-0459
Summary Cross-site scripting vulnerability in Board-TNK 1.3.1 and earlier allows remote attackers to execute arbitrary Javascript via the WEB parameter.
References
Vulnerable Configurations
  • cpe:2.3:a:linux-sottises:board-tnk:1.3:*:*:*:*:*:*:*
    cpe:2.3:a:linux-sottises:board-tnk:1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:linux-sottises:news-tnk:1.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:linux-sottises:news-tnk:1.2.1:*:*:*:*:*:*:*
CVSS
Base: 7.6 (as of 05-09-2008 - 20:28)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:H/Au:N/C:C/I:C/A:C
refmap via4
bid 4305
bugtraq 20020316 [ARL02-A09] Board-TNK Cross Site Scripting Vulnerability
confirm http://translate.google.com/translate?u=http%3A%2F%2Fwww.linux-sottises.net%2Findex.php%3Fnews_init%3D13%23newstag&langpair=fr%7Cen&hl=en&ie=UTF8&oe=UTF8&prev=%2Flanguage_tools
xf boardtnk-web-css(8475)
Last major update 05-09-2008 - 20:28
Published 12-08-2002 - 04:00
Last modified 05-09-2008 - 20:28
Back to Top