Vulnerabilities > CVE-2002-1662 - HTML Injection vulnerability in Mambo Site Server 4.0.11
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
mambo
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Mambo Site Server 4.0.11 allow remote attackers to execute arbitrary script on other clients via (1) search.php and (2) the "Your name" field during account registration.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |