cbcvebase.
CVE-2002-1008
published 2002-10-04

CVE-2002-1008: Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in…

PriorityP431high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.10%
93.4th percentile
Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlcount.cgi that contains the script, which is not filtered when the REPORT capability prints the original request.

Affected

2 ranges
VendorProductVersion rangeFixed in
summit_computer_networkslil_http_server
summit_computer_networkslil_http_server
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.