Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2002-2011

Published: 31/12/2002 Updated: 05/09/2008
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Jon Howell

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in the fom CGI program (fom.cgi) in Faq-O-Matic 2.711 and 2.712 allows remote malicious users to inject arbitrary web script or HTML via the file parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

jon howell faq-o-matic 2.712

jon howell faq-o-matic 2.711

Exploits

Exploit DB: Jon Howell Faq-O-Matic 2.7 - Cross-Site Scripting
source: wwwsecurityfocuscom/bid/4565/info Faq-O-Matic 2711 and 2712 is a web-based Frequently Asked Question (FAQ) management system It is vulnerable to a cross site scripting issue arising from a failure to filter HTML or script from a malformed query, returning the submitted script as an error message which is then processed by the b ...

References

NVD-CWE-Otherhttp://archives.neohapsis.com/archives/bugtraq/2002-04/0287.htmlhttp://www.securityfocus.com/bid/4565http://www.iss.net/security_center/static/8906.phphttps://nvd.nist.govhttps://www.exploit-db.com/exploits/21405/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook