CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1703

Cross-site scripting vulnerability (XSS) in auction.cgi for Mewsoft NetAuction 3.0 allows remote attackers to execute arbitrary script as other users via the Term parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.8%

CVSS Severity

CVSS v2 Score 6.8

References

http://online.securityfocus.com/archive/1/277049
http://www.securityfocus.com/bid/5023
https://exchange.xforce.ibmcloud.com/vulnerabilities/9365
http://online.securityfocus.com/archive/1/277049
http://www.securityfocus.com/bid/5023
https://exchange.xforce.ibmcloud.com/vulnerabilities/9365

Products affected by CVE-2002-1703

Mewsoft » Netauction » Version: 3.0

cpe:2.3:a:mewsoft:netauction:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1703

Products

Pricing

Contact Us