Published: 04/10/2002 Updated: 05/09/2008

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-site scripting vulnerability in search.pl for Fluid Dynamics Search Engine (FDSE) prior to 2.0.0.0055 allows remote malicious users to execute web script via the (1) Rank or (2) Match parameters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
zoltan milosevic fluid dynamics search engine 2.0.0.0051
zoltan milosevic fluid dynamics search engine 2.0.0.0053
zoltan milosevic fluid dynamics search engine 2.0.0.0054
zoltan milosevic fluid dynamics search engine 2.0.0.0050
zoltan milosevic fluid dynamics search engine 2.0.0.0052

source: wwwsecurityfocuscom/bid/5199/info Fluid Dynamics Search Engine is a search application for local and remote web sites, and is designed to work in most UNIX and Microsoft Windows environments Fluid Dynamics Search Engine and is maintained by Zoltan Milosevic It is possible for attackers to construct a URL that will cause scripti ...

NVD-CWE-Other http://www.securityfocus.com/bid/5199 http://www.iss.net/security_center/static/9533.php http://archives.neohapsis.com/archives/bugtraq/2002-07/0096.html http://archives.neohapsis.com/archives/bugtraq/2002-07/0094.html http://www.xav.com/scripts/search/changes.htm#4 https://nvd.nist.gov https://www.exploit-db.com/exploits/21609/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-1036

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect