Vulnerabilities > CVE-2002-0948 - Unspecified vulnerability in Scripts for Educators Makebook 2.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email parameters, which are not properly filtered.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | MakeBook 2.2 Form Field Input Validation Vulnerability. CVE-2002-0948 . Webapps exploit for cgi platform |
| id | EDB-ID:21535 |
| last seen | 2016-02-02 |
| modified | 2002-06-12 |
| published | 2002-06-12 |
| reporter | b0iler |
| source | https://www.exploit-db.com/download/21535/ |
| title | MakeBook 2.2 Form Field Input Validation Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0094.html
- http://cert.uni-stuttgart.de/archive/bugtraq/2002/06/msg00135.html
- http://www.iss.net/security_center/static/9356.php
- http://www.linguistic-funland.com/scripts/MakeBook/makebook.script
- http://www.securityfocus.com/bid/4996
- http://www.tesol.net/scriptmail.html