CVE-2002-0958 Information

Description

Cross-site scripting vulnerability in browse.php for PHP(Reactor) 1.2.7 allows remote attackers to execute script as other users via the go parameter in the comments section.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-06/0034.html http://sourceforge.net/project/shownotes.php?release_id=91877 http://www.iss.net/security_center/static/9280.php http://www.securityfocus.com/bid/4952