Vulnerabilities > CVE-2002-1027 - Cross-Site Scripting vulnerability in Macromedia Sitespring 1.2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting vulnerability in the default HTTP 500 error script (500error.jsp) for Macromedia Sitespring 1.2.0 (277.1) allows remote attackers to execute arbitrary web script via a link to 500error.jsp with the script in 1the et parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Macromedia Sitespring 1.2 Default Error Page Cross Site Scripting Vulnerability. CVE-2002-1027 . Webapps exploit for jsp platform |
id | EDB-ID:21621 |
last seen | 2016-02-02 |
modified | 2002-07-17 |
published | 2002-07-17 |
reporter | Peter Gründl |
source | https://www.exploit-db.com/download/21621/ |
title | Macromedia Sitespring 1.2 Default Error Page Cross-Site Scripting Vulnerability |