Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-12-31 | CVE-2002-2378 | Cross-Site Scripting vulnerability in Nakata AN Httpd 1.41D Cross-site scripting (XSS) vulnerability in AN HTTP 1.41d allows remote attackers to inject arbitrary web script or HTML via a colon (:) in the query string, which is inserted into the resulting error page. | 4.3 |
2002-12-31 | CVE-2002-2377 | Cross-Site Scripting vulnerability in Sephiroth32 ZAP Book 1.0.3 Cross-site scripting (XSS) vulnerability in addentry.cgi in ZAP 1.0.3 allows remote attackers to inject arbitrary SSi directives, web script, and HTML via the entry field. | 4.3 |
2002-12-31 | CVE-2002-2376 | Cross-Site Scripting vulnerability in Leung E-Guest 1.1 Cross-site scripting (XSS) vulnerability in E-Guest_sign.pl in E-Guest 1.1 allows remote attackers to inject arbitrary SSI directives, web script, and HTML via the (1) full name, (2) email, (3) homepage, and (4) location parameters. | 4.3 |
2002-12-31 | CVE-2002-2364 | Cross-Site Scripting vulnerability in Sourceforge PHP Ticket Cross-site scripting (XSS) vulnerability in PHP Ticket 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a help ticket. | 4.3 |
2002-12-31 | CVE-2002-2362 | Cross-Site Scripting vulnerability in Sourceforge Mymarket 1.71 Cross-site scripting (XSS) vulnerability in form_header.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter. | 4.3 |
2002-12-31 | CVE-2002-2359 | Cross-Site Scripting vulnerability in Mozilla 1.0/1.1 Cross-site scripting (XSS) vulnerability in the FTP view feature in Mozilla 1.0 allows remote attackers to inject arbitrary web script or HTML via the title tag of an ftp URL. | 4.3 |
2002-12-31 | CVE-2002-2358 | Cross-Site Scripting vulnerability in Opera Software Opera web Browser Cross-site scripting (XSS) vulnerability in the FTP view feature in Opera 6.0 and 6.01 through 6.04 allows remote attackers to inject arbitrary web script or HTML via the title tag of an FTP URL. | 4.3 |
2002-12-31 | CVE-2002-2350 | Cross-Site Scripting vulnerability in PHPoutsourcing Zorum 2.4 Cross-site scripting (XSS) vulnerability in z_user_show.php in dbtreelistproperty_method.php in Zorum 2.4 allows remote attackers to inject arbitrary web script or HTML via the class parameter. | 4.3 |
2002-12-31 | CVE-2002-2348 | Cross-Site Scripting vulnerability in Authoria Authoriahrsuite Cross-site scripting (XSS) vulnerability in athcgi.exe in Authoria HR allows remote attackers to inject arbitrary web script or HTML via the command parameter. | 4.3 |
2002-12-31 | CVE-2002-2347 | Cross-Site Scripting vulnerability in Oracle Application Server Cross-site scripting (XSS) vulnerability in Oracle Java Server Page (OJSP) demo files (1) hellouser.jsp, (2) welcomeuser.jsp and (3) usebean.jsp in Oracle 9i Application Server 9.0.2, 1.0.2.2, 1.0.2.1s and 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the text entry field. | 4.3 |