CVE-2002-0458

N/A Unknown

Published: August 12, 2002 Modified: April 16, 2026

Description

Cross-site scripting vulnerability in News-TNK 1.2.1 and earlier allows remote attackers to execute arbitrary Javascript via the WEB parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://archives.neohapsis.com/archives/bugtraq/2002-03/0206.html

Source: cve@mitre.org

Vendor Advisory

http://translate.google.com/translate?u=http%3A%2F%2Fwww.linux-sottises.net%2Findex.php%3Fnews_init%3D13%23newstag&langpair=fr%7Cen&hl=en&ie=UTF8&oe=UTF8&prev=%2Flanguage_tools

Source: cve@mitre.org

http://www.iss.net/security_center/static/8477.php

Source: cve@mitre.org

Patch Vendor Advisory

http://www.linux-sottises.net/software/news-tnk/CHANGES

Source: cve@mitre.org

http://www.securityfocus.com/bid/14145

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2002-03/0206.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://translate.google.com/translate?u=http%3A%2F%2Fwww.linux-sottises.net%2Findex.php%3Fnews_init%3D13%23newstag&langpair=fr%7Cen&hl=en&ie=UTF8&oe=UTF8&prev=%2Flanguage_tools

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/8477.php

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.linux-sottises.net/software/news-tnk/CHANGES

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/14145

Source: af854a3a-2127-422b-91ae-364da2661108

10 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

1.3%

80th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

linux-sottises