Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users features.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0022.html | |
http://dcl.sourceforge.net/index.php | |
http://marc.info/?l=bugtraq&m=102668783632589&w=2 | |
http://www.iss.net/security_center/static/9532.php | Patch Vendor Advisory |
http://www.securityfocus.com/bid/5182 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2002-10-04 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2002-1037
Mitre link : CVE-2002-1037
CVE.ORG link : CVE-2002-1037
JSON object : View
Products Affected
michael_dean
- double_choco_latte
CWE