Vulnerabilities > CVE-2002-2129 - Cross-Site Scripting vulnerability in W-Agora 4.1.5

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

w-agora

exploit available

NVD

Published: 2002-12-31

Updated: 2017-07-11

Summary

Cross-site scripting vulnerability (XSS) in editform.php for w-Agora 4.1.5 allows remote attackers to execute arbitrary web script via an arbitrary form field name containing the script, which is echoed back to the user when displaying the form.

Vulnerable Configurations

Part	Description	Count
Application	W-Agora W Agora W Agora 4.1.5	1

Exploit-Db

description	W-Agora 4.1.6 EditForm.PHP Cross-Site Scripting Vulnerability. CVE-2002-2129 . Webapps exploit for php platform
id	EDB-ID:22109
last seen	2016-02-02
modified	2002-12-22
published	2002-12-22
reporter	xatr0z
source	https://www.exploit-db.com/download/22109/
title	W-Agora 4.1.6 EditForm.PHP Cross-Site Scripting Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References