CVE-2002-0375
ecometry sgdynamo - Cross-Site Scripting via HTNAME Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-0375. PoCs published by frog.
AI-analyzed exploit summary This is a writeup describing a cross-site scripting (XSS) vulnerability in SGDynamo. The vulnerability allows script code injection via URL parameters, which can execute in the context of the target site.
Description
Cross-site scripting vulnerability in sgdynamo.exe for Sgdynamo allows remote attackers to execute arbitrary Javascript via a URL with the script in the HTNAME parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by frog · textremotewindows
https://www.exploit-db.com/exploits/21446
This is a writeup describing a cross-site scripting (XSS) vulnerability in SGDynamo. The vulnerability allows script code injection via URL parameters, which can execute in the context of the target site.
Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target:
SGDynamo (version not specified)
No auth needed
Prerequisites:
A vulnerable SGDynamo installation · User interaction to visit a malicious link
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=102107488402057&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/9830
Exploit vdb-entry
x_refsource_osvdb
http://www.osvdb.org/3458
Mailing List mailing-list
x_refsource_vuln-dev
http://marc.info/?l=vuln-dev&m=101908986415768&w=2
Scores
EPSS
0.0637
EPSS Percentile
92.8%
Details
Status
published
Products (3)
ecometry/sgdynamo
5.32
ecometry/sgdynamo
6.1
ecometry/sgdynamo
7.0
Published
May 29, 2002
Tracked Since
Feb 18, 2026