Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026
CVE-2002-1785
CVE-2002-1785
Description
Cross-site scripting (XSS) vulnerability in Zeus Administration Server in Zeus Web Server 4.0 through 4.1r2 allows remote authenticated users to inject arbitrary web script or HTML via the section parameter to index.fcgi.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:zeus_technologies:zeus_web_server:4.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:zeus_technologies:zeus_web_server:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:zeus_technologies:zeus_web_server:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:zeus_technologies:zeus_web_server:4.1_r1:*:*:*:*:*:*:*
- cpe:2.3:a:zeus_technologies:zeus_web_server:4.1_r2:*:*:*:*:*:*:*
- cpe:2.3:a:zeus_technologies:zeus_web_server:4.1_r3:*:*:*:*:*:*:*
- cpe:2.3:a:zeus_technologies:zeus_web_server:4.1_r4:*:*:*:*:*:*:*
- Range: >=4.0, <=4.1r2
Patches
Vulnerability mechanics
References
4- archives.neohapsis.com/archives/bugtraq/2002-11/0104.htmlnvdExploitVendor Advisory
- online.securityfocus.com/archive/1/302961nvdExploitVendor Advisory
- www.securityfocus.com/bid/6144nvdExploitPatch
- www.iss.net/security_center/static/10567.phpnvd
News mentions
0No linked articles in our index yet.