CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2010

Cross-site scripting (XSS) vulnerability in htsearch.cgi in htdig (ht://Dig) 3.1.5, 3.1.6, and 3.2 allows remote attackers to inject arbitrary web script or HTML via the words parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.4%

CVSS Severity

CVSS v2 Score 4.3

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/0321.html
http://www.iss.net/security_center/static/9433.php
http://www.securityfocus.com/bid/5091
http://archives.neohapsis.com/archives/bugtraq/2002-06/0321.html
http://www.iss.net/security_center/static/9433.php
http://www.securityfocus.com/bid/5091

Products affected by CVE-2002-2010

Htdig » Htdig » Version: 3.1.5

cpe:2.3:a:htdig:htdig:3.1.5
Htdig » Htdig » Version: 3.1.6

cpe:2.3:a:htdig:htdig:3.1.6
Htdig » Htdig » Version: 3.2.0

cpe:2.3:a:htdig:htdig:3.2.0
Htdig » Htdig » Version: 3.2.0b3

cpe:2.3:a:htdig:htdig:3.2.0b3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2010

Products

Pricing

Contact Us