Cross-site scripting vulnerability in browse.php for PHP(Reactor) 1.2.7 allows remote attackers to execute script as other users via the go parameter in the comments section.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/4952 | Patch Vendor Advisory |
http://www.iss.net/security_center/static/9280.php | Patch Vendor Advisory |
http://sourceforge.net/project/shownotes.php?release_id=91877 | |
http://archives.neohapsis.com/archives/bugtraq/2002-06/0034.html |
Configurations
Information
Published : 2002-10-03 21:00
Updated : 2008-09-05 13:29
NVD link : CVE-2002-0958
Mitre link : CVE-2002-0958
JSON object : View
CWE
Products Affected
ekilat_llc
- php\(reactor\)