PT-2002-1509 · News Tnk · News-Tnk
Published
2002-06-11
·
Updated
2008-09-05
·
CVE-2002-0458
CVSS v2.0
7.6
High
| Vector | AV:N/AC:H/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
News-TNK versions 1.2.1 and earlier
Description
A cross-site scripting issue allows remote attackers to execute arbitrary Javascript via the
WEB parameter.Recommendations
For News-TNK versions 1.2.1 and earlier, update to a version later than 1.2.1 to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
News-Tnk