Vulnerability Details CVE-2002-1388
Cross-site scripting (XSS) vulnerability in MHonArc before 2.5.14 allows remote attackers to inject arbitrary HTML into web archive pages via HTML mail messages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.5%
CVSS Severity
CVSS v2 Score 4.3
References
- http://www.debian.org/security/2002/dsa-221
- http://www.mhonarc.org/archive/cgi-bin/mesg.cgi?a=mhonarc-users&i=200212220120.gBM1K8502180%40mcguire.earlhood.com
- http://www.securityfocus.com/bid/6479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10950
- http://www.debian.org/security/2002/dsa-221
- http://www.mhonarc.org/archive/cgi-bin/mesg.cgi?a=mhonarc-users&i=200212220120.gBM1K8502180%40mcguire.earlhood.com
- http://www.securityfocus.com/bid/6479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10950
Products affected by CVE-2002-1388
-
cpe:2.3:a:mhonarc:mhonarc:2.4.4
-
cpe:2.3:a:mhonarc:mhonarc:2.5
-
cpe:2.3:a:mhonarc:mhonarc:2.5.1
-
cpe:2.3:a:mhonarc:mhonarc:2.5.11
-
cpe:2.3:a:mhonarc:mhonarc:2.5.12
-
cpe:2.3:a:mhonarc:mhonarc:2.5.13
-
cpe:2.3:a:mhonarc:mhonarc:2.5.2
-
cpe:2.3:a:mhonarc:mhonarc:2.5.3