CVE-2002-1685 Information

Description

Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI.

Reference

http://online.securityfocus.com/archive/1/281088 http://www.securityfocus.com/bid/5086 https://exchange.xforce.ibmcloud.com/vulnerabilities/9513