PT-2002-2042 · Fdse · Fluid Dynamics Search Engine

Published

2002-08-31

Updated

2008-09-05

CVE-2002-1036

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Fluid Dynamics Search Engine (FDSE) versions prior to 2.0.0.0055

Description: The issue concerns a cross-site scripting vulnerability. It allows remote attackers to execute web script via the Rank or Match parameters in the search.pl file.

Recommendations: For versions prior to 2.0.0.0055, update to version 2.0.0.0055 or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1036

Affected Products

Fluid Dynamics Search Engine

PT-2002-2042 · Fdse · Fluid Dynamics Search Engine

CVE-2002-1036

Related Identifiers

Affected Products

References · 8