CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0948

Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email parameters, which are not properly filtered.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.075

EPSS Ranking 91.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/0094.html
http://cert.uni-stuttgart.de/archive/bugtraq/2002/06/msg00135.html
http://www.iss.net/security_center/static/9356.php
http://www.linguistic-funland.com/scripts/MakeBook/makebook.script
http://www.securityfocus.com/bid/4996
http://www.tesol.net/scriptmail.html
http://archives.neohapsis.com/archives/bugtraq/2002-06/0094.html
http://cert.uni-stuttgart.de/archive/bugtraq/2002/06/msg00135.html
http://www.iss.net/security_center/static/9356.php
http://www.linguistic-funland.com/scripts/MakeBook/makebook.script
http://www.securityfocus.com/bid/4996
http://www.tesol.net/scriptmail.html

Products affected by CVE-2002-0948

Scripts For Educators » Makebook » Version: 2.2

cpe:2.3:a:scripts_for_educators:makebook:2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0948

Products

Pricing

Contact Us