CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Uninet: Security Vulnerabilities

CVE-2002-2330

Cross-site scripting (XSS) vulnerability in stat.pl in StatsPlus 1.25 allows remote attackers to inject arbitrary web script or HTML via (1) HTTP_USER_AGENT or (2) HTTP_REFERER, which is written to stats.html and executed in client browsers.

CVSS Score

5.0

EPSS Score

0.003

Published

2002-12-31

Page 1

Vulnerabilities

Vulnerable Software

Uninet: Security Vulnerabilities

Products

Pricing

Contact Us