Unrated severityNVD Advisory· Published Aug 12, 2002· Updated Jun 16, 2026
CVE-2002-0504
CVE-2002-0504
Description
Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, which allows remote attackers to execute script in other clients via the NFuse_Application parameter to (1) launch.jsp or (2) launch.asp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:citrix:nfuse:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:citrix:nfuse:*:*:*:*:*:*:*:*range: <=1.6
- cpe:2.3:a:citrix:nfuse:1.51:*:*:*:*:*:*:*
- (no CPE)range: <=1.6
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.