CVE-2002-2341

SonicWALL SOHO3 6.3.0.0 - Cross-Site Scripting via Blocked URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-2341. PoCs published by E M.

AI-analyzed exploit summary The exploit describes a stored XSS vulnerability in Sonicwall SOHO3 where script code injected into a blocked domain URL is logged and executed when an administrator views the logs. The attack requires enticing a local user to access a crafted URL.

Description

Cross-site scripting (XSS) vulnerability in content blocking in SonicWALL SOHO3 6.3.0.0 allows remote attackers to inject arbitrary web script or HTML via a blocked URL.

Exploits (1)

exploitdb WRITEUP VERIFIED
by E M · textremotemultiple
https://www.exploit-db.com/exploits/21453

The exploit describes a stored XSS vulnerability in Sonicwall SOHO3 where script code injected into a blocked domain URL is logged and executed when an administrator views the logs. The attack requires enticing a local user to access a crafted URL.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Sonicwall SOHO3
No auth needed
Prerequisites: Knowledge of a blocked domain · Ability to entice a local user to click a crafted URL
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/272935
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4755
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9103.php

Scores

EPSS 0.0160
EPSS Percentile 72.9%

Details

CWE
CWE-79
Status published
Products (1)
sonicwall/soho3 6.3.0.0
Published Dec 31, 2002
Tracked Since Feb 18, 2026