Vulnerabilities > CVE-2002-0962 - Unspecified vulnerability in Geeklog 1.3/1.3.0/1.3.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cross-site scripting vulnerabilities in GeekLog 1.3.5 and earlier allow remote attackers to execute arbitrary script via (1) the url variable in the Link field of a calendar event, (2) the topic parameter in index.php, or (3) the title parameter in comment.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Exploit-Db
description Geeklog 1.3.5 Calendar Event Form Script Injection Vulnerability. CVE-2002-0962 . Webapps exploit for php platform id EDB-ID:21528 last seen 2016-02-02 modified 2002-06-10 published 2002-06-10 reporter Ahmet Sabri ALPER source https://www.exploit-db.com/download/21528/ title Geeklog 1.3.5 Calendar Event Form Script Injection Vulnerability description Geeklog 1.3.5 Multiple Cross Site Scripting Vulnerabilities. CVE-2002-0962. Webapps exploit for php platform id EDB-ID:21525 last seen 2016-02-02 modified 2002-06-10 published 2002-06-10 reporter Ahmet Sabri ALPER source https://www.exploit-db.com/download/21525/ title Geeklog 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities
Nessus
NASL family | CGI abuses |
NASL id | GEEKLOG_ADMIN_ACCESS.NASL |
description | The remote server is running a version of Geeklog affected by various vulnerabilities, including SQL injection, arbitrary file upload, privilege escalation, etc. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11670 |
published | 2003-05-29 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11670 |
title | Geeklog <= 1.3.7sr1 Multiple Vulnerabilities (SQLi, XSS, Priv Esc) |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0058.html
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0058.html
- http://geeklog.sourceforge.net/article.php?story=20020610013358149
- http://geeklog.sourceforge.net/article.php?story=20020610013358149
- http://www.iss.net/security_center/static/9309.php
- http://www.iss.net/security_center/static/9309.php
- http://www.iss.net/security_center/static/9310.php
- http://www.iss.net/security_center/static/9310.php
- http://www.securityfocus.com/bid/4969
- http://www.securityfocus.com/bid/4969
- http://www.securityfocus.com/bid/4974
- http://www.securityfocus.com/bid/4974