CVE-2002-1334

{"id": "CVE-2002-1334", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2002-12-11T05:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=103842773205148&w=2", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1005681", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/6265", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10718", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=103842773205148&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1005681", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/6265", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10718", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in BizDesign ImageFolio 3.01 and earlier allows remote attackers to execute arbitrary web script as other users via (1) the direct parameter in imageFolio.cgi, or (2) nph-build.cgi."}, {"lang": "es", "value": "Vulnerabilidad de scripting en sitios cruzados (XSS) en BizDesign Imageolio 3.01 y anteriores permiten a atacantes remotos ejecutar c\u00f3digo web arbitrario como otros usuarios mediante \r\n\r\nel par\u00e1metro directo en imageFolio.cgi, o\r\nnph-build.cgi"}], "lastModified": "2024-11-20T23:41:03.523", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:bizdesign:imagefolio:2.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5662DE5-1F10-4B5F-8CF7-CB20C3244CC1"}, {"criteria": "cpe:2.3:a:bizdesign:imagefolio:2.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B95BBD99-5342-460F-B304-9D55528A0FF6"}, {"criteria": "cpe:2.3:a:bizdesign:imagefolio:2.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73AD4E7B-E03B-4A8E-B68E-83F5C1947A4A"}, {"criteria": "cpe:2.3:a:bizdesign:imagefolio:2.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE34C2E9-1F43-494D-9C12-03690B040E64"}, {"criteria": "cpe:2.3:a:bizdesign:imagefolio:3.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B3B3AC7-9CE5-4073-8397-DE0D840F9D79"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}