Medium Published: Dec 31, 2002 Modified: Apr 03, 2025

CVE-2002-1651

4.3 CVSS Score Medium

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Export CVE-2002-1651 Data:

Link copied!

Description

Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error messages from template pages that use the (1) vformat or (2) vfilter functions.

CVSS Vector Details

Attack Vector Network

Attack Complexity M

Confidentiality None

Integrity P

Availability None

Affected Software Configurations

a verity search97 2.1 * * * * * * *

Weaknesses (CWE)

CWE-79

References & External Links

http://www.kb.cert.org/vuls/id/636431
http://www.securityfocus.com/bid/5102
https://exchange.xforce.ibmcloud.com/vulnerabilities/9441
http://www.kb.cert.org/vuls/id/636431
http://www.securityfocus.com/bid/5102
https://exchange.xforce.ibmcloud.com/vulnerabilities/9441

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

CVE History Timeline

May 18, 2005 00:01 Initial Analysis

Jul 11, 2017 01:29 CVE Modified

May 14, 2024 01:22 CVE Modified

Nov 20, 2024 23:41 CVE Modified

← Back to CVE Tracker