Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.
CVE-2002-0346 Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) servicecgi or (2) alertcgi Packetstorm publication at packetstormsecuritycom/files/25837/Colbalt-RAQ-v4txthtml SecurityFocus publication at wwwsecurityfocuscom/bid/4211 Author Alex Her