MidnightBSD

Advisories for plumtree

CVE-2002-0205 HIGH

Cross-site scripting (CSS) vulnerability in error.asp for Plumtree Corporate Portal 3.5 through 4.5 allows remote attackers to execute arbitrary script on other clients via the "Description" parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
plumtree plumtree_corporate_portal 4.0i
plumtree plumtree_corporate_portal 4.0_sp1
plumtree plumtree_corporate_portal 3.5
plumtree plumtree_corporate_portal 4.0
plumtree plumtree_corporate_portal 4.5
plumtree plumtree_corporate_portal 4.0i_sp1