CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2178

Cross-site scripting (XSS) vulnerability in article.php module for phpWebSite 0.8.3 allows remote attackers to execute arbitrary Javascript script via the sid parameter, as demonstrated using an IMG tag.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.5%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.iss.net/security_center/static/10256.php
http://www.securityfocus.com/archive/1/293879
http://www.securityfocus.com/bid/5864
http://www.iss.net/security_center/static/10256.php
http://www.securityfocus.com/archive/1/293879
http://www.securityfocus.com/bid/5864

Products affected by CVE-2002-2178

Phpwebsite » Phpwebsite » Version: 0.8.3

cpe:2.3:a:phpwebsite:phpwebsite:0.8.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2178

Products

Pricing

Contact Us