CVE-2002-2362

Sourceforge Mymarket - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in form_header.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by qber66 · textwebappsphp

https://www.exploit-db.com/exploits/21961

View Code ZIP pw:eip

References (3)

Core 3

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/6035

Third Party Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/10470.php

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/296861

Scores

EPSS 0.0056

EPSS Percentile 68.6%

Details

CWE

CWE-79

Status published

Products (1)

sourceforge/mymarket 1.71

Published Dec 31, 2002

Tracked Since Feb 18, 2026