Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2002-0948
HistoryOct 04, 2002 - 4:00 a.m.

CVE-2002-0948

2002-10-0404:00:00
mitre
web.nvd.nist.gov
21
cve-2002-0948
scripts for educators
makebook 2.2
cgi program
remote attackers
execute script
server-side includes
ssi
web server
name parameters
email parameters
security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.064

Percentile

93.7%

JSON

Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email parameters, which are not properly filtered.

Affected configurations

Nvd
Node
scripts_for_educatorsmakebookMatch2.2
VendorProductVersionCPE
scripts_for_educatorsmakebook2.2cpe:2.3:a:scripts_for_educators:makebook:2.2:*:*:*:*:*:*:*

Related

exploitdb 1
nvd 1
cvelist 1
exploitdb
exploitdb
MakeBook 2.2 - Form Field Input Validation
2002-06-12 00:00:00
nvd
nvd
CVE-2002-0948
2002-10-04 04:00:00
cvelist
cvelist
CVE-2002-0948
2002-08-31 04:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.064

Percentile

93.7%

JSON
Related for CVE-2002-0948
exploitdb1nvd1cvelist1