CVE-2002-1037 Information

Description

Cross-site scripting vulnerability in Double Choco Latte (DCL) before 20020706 allows remote attackers to inject arbitrary HTML including script into web pages via the (1) Ticket Find (2) Priorities (3) Severities (4) Projects (5) WO Find (6) Departments and (7) Users features.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0022.html http://dcl.sourceforge.net/index.php http://marc.info/?l=bugtraq&m=102668783632589&w=2 http://www.iss.net/security_center/static/9532.php http://www.securityfocus.com/bid/5182