Working Resources Inc. » Badblue : Security Vulnerabilities, CVEs, Published In 2002 (XSS)
Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI.
Max CVSS
4.3
EPSS Score
0.23%
Published
2002-12-31
Updated
2017-07-11
Cross-site scripting (XSS) vulnerability in BadBlue Personal Edition 1.7.3 allows remote attackers to execute arbitrary script as other users by injecting script into the cleanSearchString() function.
Max CVSS
4.3
EPSS Score
0.23%
Published
2002-12-31
Updated
2017-07-11
Cross-site scripting vulnerability in BadBlue before 1.6.1 beta allows remote attackers to execute arbitrary script and possibly additional commands via a URL that contains Javascript.
Max CVSS
7.5
EPSS Score
0.61%
Published
2002-06-25
Updated
2016-10-18
3 vulnerabilities found