CVE-2002-1785

2005-06-2804:00:00

mitre

www.cve.org

zeus web server

xss

remote authenticated users

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

50.8%

JSON

Cross-site scripting (XSS) vulnerability in Zeus Administration Server in Zeus Web Server 4.0 through 4.1r2 allows remote authenticated users to inject arbitrary web script or HTML via the section parameter to index.fcgi.

References

archives.neohapsis.com/archives/bugtraq/2002-11/0104.html

online.securityfocus.com/archive/1/302961

www.iss.net/security_center/static/10567.php

www.securityfocus.com/bid/6144