ID de Prueba:	1.3.6.1.4.1.25623.1.0.15540
Categoría:	Web application abuses
Título:	Faq-O-Matic 'fom.cgi' XSS Vulnerability
Resumen:	Faq-O-Matic is prone to a cross-site scripting (XSS); vulnerability in the script 'fom.cgi'.
Descripción:	Summary: Faq-O-Matic is prone to a cross-site scripting (XSS) vulnerability in the script 'fom.cgi'. Vulnerability Impact: With a specially crafted URL, an attacker can cause arbitrary code execution resulting in a loss of integrity. Solution: Update to the latest version of this software. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2002-0230 Bugtraq: 20020204 [SUPERPETZ ADVISORY #002- Faq-O-Matic Cross-Site Scripting Vulnerability] (Google Search) http://marc.info/?l=bugtraq&m=101285834018701&w=2 Bugtraq: 20020205 Faq-O-Matic Cross-Site Scripting (Google Search) http://marc.info/?l=bugtraq&m=101293973111873&w=2 Debian Security Information: DSA-109 (Google Search) http://www.debian.org/security/2002/dsa-109 Common Vulnerability Exposure (CVE) ID: CVE-2002-2011 BugTraq ID: 4565 http://www.securityfocus.com/bid/4565 Bugtraq: 20020419 Another Faq-O-Matic XSS Vuln? (Google Search) http://archives.neohapsis.com/archives/bugtraq/2002-04/0287.html http://www.iss.net/security_center/static/8906.php
Copyright	Copyright (C) 2004 David Maciejak

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.