Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2002-1651
HistoryMar 28, 2005 - 5:00 a.m.

CVE-2002-1651

2005-03-2805:00:00
CWE-79
[email protected]
web.nvd.nist.gov
26
cve-2002-1651
cross-site scripting
xss
verity search97
remote attackers
arbitrary content
sensitive information
error messages
vformat
vfilter functions
template pages

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.2%

JSON

Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error messages from template pages that use the (1) vformat or (2) vfilter functions.

Affected configurations

NVD
Node
veritysearch97Match2.1
CPENameOperatorVersion
verity:search97verity search97eq2.1

Related

cvelist 1
nvd 2
cve 1
cvelist
cvelist
CVE-2002-1651
2005-03-28 05:00:00
nvd
nvd
CVE-2002-1651
2002-12-31 05:00:00
CVE-2002-2151
2002-12-31 05:00:00
cve
cve
CVE-2002-2151
2005-11-16 21:17:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.1 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.2%

JSON
Related for CVE-2002-1651
cvelist1nvd2cve1