CVE-2002-1651
NONE EPSS 67.8%
Published Dec 31, 200223y ago · Modified Jun 16, 20262w ago
Published Dec 31, 2002 23y ago
Last Modified Jun 16, 2026 2w ago
Description
Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error messages from template pages that use the (1) vformat or (2) vfilter functions.
Threat Intelligence
EPSS Exploit Probability
67.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-79 Cross-site Scripting Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| verity | search97 | 2.1 | any |
References 3
- kb.cert.org http://www.kb.cert.org/vuls/id/636431
- securityfocus.com http://www.securityfocus.com/bid/5102
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/9441
Remediation
- kb.cert.org http://www.kb.cert.org/vuls/id/636431
- securityfocus.com http://www.securityfocus.com/bid/5102