CVE-2002-0281 Information

Description

Cross-site scripting vulnerability in DCP-Portal 4.2 and earlier allows remote attackers to gain privileges of other portal users by providing Javascript in the job information field to user_update.php.

Reference

http://marc.info/?l=bugtraq&m=101379217032525&w=2 http://www.dcp-portal.com/contents.php?id=18 http://www.securityfocus.com/bid/4112 https://exchange.xforce.ibmcloud.com/vulnerabilities/8197