Unrated severityNVD Advisory· Published May 31, 2002· Updated Jun 16, 2026
CVE-2002-0281
CVE-2002-0281
Description
Cross-site scripting vulnerability in DCP-Portal 4.2 and earlier allows remote attackers to gain privileges of other portal users by providing Javascript in the job information field to user_update.php.
Affected products
5cpe:2.3:a:codeworx_technologies:dcp-portal:3.7:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:codeworx_technologies:dcp-portal:3.7:*:*:*:*:*:*:*
- cpe:2.3:a:codeworx_technologies:dcp-portal:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:codeworx_technologies:dcp-portal:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:codeworx_technologies:dcp-portal:4.2:*:*:*:*:*:*:*
- (no CPE)range: <=4.2
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.