Vulnerabilities > CVE-2002-1027 - Cross-Site Scripting vulnerability in Macromedia Sitespring 1.2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting vulnerability in the default HTTP 500 error script (500error.jsp) for Macromedia Sitespring 1.2.0 (277.1) allows remote attackers to execute arbitrary web script via a link to 500error.jsp with the script in 1the et parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Macromedia Sitespring 1.2 Default Error Page Cross Site Scripting Vulnerability. CVE-2002-1027 . Webapps exploit for jsp platform |
| id | EDB-ID:21621 |
| last seen | 2016-02-02 |
| modified | 2002-07-17 |
| published | 2002-07-17 |
| reporter | Peter Gründl |
| source | https://www.exploit-db.com/download/21621/ |
| title | Macromedia Sitespring 1.2 Default Error Page Cross-Site Scripting Vulnerability |