CVE-2002-2189 — Cross-site Scripting in Microsoft Windows 2003 Server

3 documents3 sources

Severity

5.1MEDIUMNVD

EPSS

12.1%

top 6.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 2003 Server

Timeline

PublishedDec 31

Latest updateApr 30

Description

Cross-site scripting (XSS) vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/windows_2003_serverr2

🔴Vulnerability Details

GHSA

GHSA-v8rc-h93q-rjmm: Cross-site scripting (XSS) vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link↗2022-04-30

▶

CVEList

CVE-2002-2189: Cross-site scripting (XSS) vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link↗2005-11-16

▶