CVE-2002-1037
published 2002-10-04CVE-2002-1037: Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web…
PriorityP415medium5CVSS 2.0
AVNACLAuNCNIPAN
EPSS
1.86%
76.6th percentile
Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users features.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | dcl | — | — |
| michael_dean | double_choco_latte | — | — |
| michael_dean | double_choco_latte | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
vendor_debian5.0LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2002-1037: dcl - Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 a...
vendor_debian·2002·CVSS 5.0
CVE-2002-1037 [MEDIUM] CVE-2002-1037: dcl - Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 a...
Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users features.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-fg7r-vg4h-848c: Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, int
ghsa_unreviewed·2022-04-30
CVE-2002-1037 [MEDIUM] GHSA-fg7r-vg4h-848c: Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, int
Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML, including script, into web pages via the (1) Ticket# Find, (2) Priorities, (3) Severities, (4) Projects, (5) WO# Find, (6) Departments and (7) Users features.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0022.htmlhttp://dcl.sourceforge.net/index.phphttp://marc.info/?l=bugtraq&m=102668783632589&w=2http://www.iss.net/security_center/static/9532.phphttp://www.securityfocus.com/bid/5182http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0022.htmlhttp://dcl.sourceforge.net/index.phphttp://marc.info/?l=bugtraq&m=102668783632589&w=2http://www.iss.net/security_center/static/9532.phphttp://www.securityfocus.com/bid/5182
2002-10-04
Published