CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1151

The cross-site scripting protection for Konqueror in KDE 2.2.2 and 3.0 through 3.0.3 does not properly initialize the domains on sub-frames and sub-iframes, which can allow remote attackers to execute script and steal cookies from subframes that are in other domains.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.5%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2002-1151

Kde » Konqueror » Version: 2.2.2

cpe:2.3:a:kde:konqueror:2.2.2
Kde » Konqueror » Version: 3.0

cpe:2.3:a:kde:konqueror:3.0
Kde » Konqueror » Version: 3.0.1

cpe:2.3:a:kde:konqueror:3.0.1
Kde » Konqueror » Version: 3.0.2

cpe:2.3:a:kde:konqueror:3.0.2
Kde » Konqueror » Version: 3.0.3

cpe:2.3:a:kde:konqueror:3.0.3
Kde » Kde » Version: 2.2.2

cpe:2.3:o:kde:kde:2.2.2
Kde » Kde » Version: 3.0

cpe:2.3:o:kde:kde:3.0
Kde » Kde » Version: 3.0.1

cpe:2.3:o:kde:kde:3.0.1
Kde » Kde » Version: 3.0.2

cpe:2.3:o:kde:kde:3.0.2
Kde » Kde » Version: 3.0.3

cpe:2.3:o:kde:kde:3.0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1151

Products

Pricing

Contact Us