CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0955

Cross-site scripting vulnerability in YaBB.cgi for Yet Another Bulletin Board (YaBB) 1 Gold SP1 and earlier allows remote attackers to execute arbitrary script as other web site visitors via script in the num parameter, which is not filtered in the resulting error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.054

EPSS Ranking 89.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/0261.html
http://www.iss.net/security_center/static/9408.php
http://www.securityfocus.com/bid/5078
http://archives.neohapsis.com/archives/bugtraq/2002-06/0261.html
http://www.iss.net/security_center/static/9408.php
http://www.securityfocus.com/bid/5078

Products affected by CVE-2002-0955

Yabb » Yabb » Version: 1_gold_sp_1

cpe:2.3:a:yabb:yabb:1_gold_sp_1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0955

Products

Pricing

Contact Us