Vulnerabilities > CVE-2002-1006 - Cross-Site Scripting vulnerability in Betsie Parserl.PL

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

bbc-education

exploit available

NVD

Published: 2002-10-04

Updated: 2008-09-05

Summary

Cross-site scripting (XSS) vulnerability in BBC Education Text to Speech Internet Enhancer (Betsie) 1.5.11 and earlier allows remote attackers to execute arbitrary web script via parserl.pl.

Vulnerable Configurations

Part	Description	Count
Application	Bbc_Education BBC Education Betsie 1.5 BBC Education Betsie 1.5.1 BBC Education Betsie 1.5.2 BBC Education Betsie 1.5.3 BBC Education Betsie 1.5.4 BBC Education Betsie 1.5.5 BBC Education Betsie 1.5.6 BBC Education Betsie 1.5.7 BBC Education Betsie 1.5.8 BBC Education Betsie 1.5.9 BBC Education Betsie 1.5.10 BBC Education Betsie 1.5.11	12

Exploit-Db

description	BBC Education Betsie 1.5 Parserl.PL Cross-Site Scripting Vulnerability. CVE-2002-1006 . Webapps exploit for cgi platform
id	EDB-ID:21587
last seen	2016-02-02
modified	2002-07-01
published	2002-07-01
reporter	Mark Rowe
source	https://www.exploit-db.com/download/21587/
title	BBC Education Betsie 1.5 Parserl.PL Cross-Site Scripting Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References