CVE-2002-0257 Information
Share on:
Feb 14, 2021
cve
Description
Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attackers to obtain information from other users via the form fields (1) TITLE (2) DESCTIT (3) DESC (4) searchstring (5) ALIAS (6) EMAIL (7) ADDRESS1 (8) ADDRESS2 (9) ADDRESS3 (10) PHONE1 (11) PHONE2 (12) PHONE3 or (13) PHONE4.
Reference
http://marc.info/?l=bugtraq&m=101328880521775&w=2 http://www.iss.net/security_center/static/8161.php http://www.netcreations.addr.com/dcforum/DCForumID2/126.html http://www.securityfocus.com/bid/4069