Vulnerabilities > Open Source Development Network > Slashcode > 2.2

DATE	CVE	VULNERABILITY TITLE	RISK
2002-12-31	CVE-2002-1748	Unspecified vulnerability in Open Source Development Network Slashcode Unknown vulnerability in Slash 2.1.x and 2.2 through 2.2.2, as used in Slashcode, allows remote authenticated users to gain access to arbitrary accounts. local low complexity open-source-development-network	7.2
2002-05-31	CVE-2002-0292	Cross-Site Scripting vulnerability in SlashCode Cross-site scripting vulnerability in Slash before 2.2.5, as used in Slashcode and elsewhere, allows remote attackers to steal cookies and authentication information from other users via Javascript in a URL, possibly in the formkey field. network high complexity open-source-development-network	2.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.