CVE-2002-0230 Information

Description

Cross-site scripting vulnerability in fom.cgi of Faq-O-Matic 2.712 allows remote attackers to execute arbitrary Javascript on other clients via the cmd parameter which causes the script to be inserted into an error message.

Reference

http://marc.info/?l=bugtraq&m=101285834018701&w=2 http://marc.info/?l=bugtraq&m=101293973111873&w=2 http://sourceforge.net/mailarchive/forum.php?thread_id=464940&forum_id=6367 http://www.debian.org/security/2002/dsa-109