VYPR
Unrated severityNVD Advisory· Published Aug 12, 2002· Updated Jun 16, 2026

CVE-2002-0504

CVE-2002-0504

Description

Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, which allows remote attackers to execute script in other clients via the NFuse_Application parameter to (1) launch.jsp or (2) launch.asp.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:citrix:nfuse:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:citrix:nfuse:*:*:*:*:*:*:*:*range: <=1.6
    • cpe:2.3:a:citrix:nfuse:1.51:*:*:*:*:*:*:*
    • (no CPE)range: <=1.6

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.