office

4 exploits Active since Jun 2002
CVE-2002-0855 EXPLOITDB text WORKING POC
Mailman - Cross-Site Scripting via Adminpw or Info Parameters
Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber's list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.
CVE-2002-0855 EXPLOITDB text WORKING POC
Mailman - Cross-Site Scripting via Adminpw or Info Parameters
Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber's list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.
CVE-2002-0388 EXPLOITDB text WORKING POC
Mailman < 2.0.11 - Cross-Site Scripting via Admin Login Page or Pipermail Index Summaries
Cross-site scripting vulnerabilities in Mailman before 2.0.11 allow remote attackers to execute script via (1) the admin login page, or (2) the Pipermail index summaries.
CVE-2002-0771 EXPLOITDB text WORKING POC
ViewCVS 0.9.2 - Cross-Site Scripting via cvsroot or sortby Parameters
Cross-site scripting vulnerability in viewcvs.cgi for ViewCVS 0.9.2 allows remote attackers to inject script and steal cookies via the (1) cvsroot or (2) sortby parameters.