VYPR
Unrated severityNVD Advisory· Published Aug 12, 2002· Updated Jun 16, 2026

CVE-2002-0521

CVE-2002-0521

Description

Cross-site scripting vulnerabilities in ASP-Nuke RC2 and earlier allow remote attackers to execute script or gain privileges as other ASP-Nuke users via script in (1) the name parameter in downloads.asp, (2) the message parameter in Post.asp, or (3) a web site URL in profile.asp.

Affected products

3
  • Asp Nuke/Asp Nuke3 versions
    cpe:2.3:a:asp-nuke:asp-nuke:rc1:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:asp-nuke:asp-nuke:rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:asp-nuke:asp-nuke:rc2:*:*:*:*:*:*:*
    • (no CPE)range: <= RC2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.