New Search

CGI.pm start_form Cross-Site Scripting Vulnerability

oval:org.mitre.oval:def:307

Cross-site scripting (XSS) vulnerability in start_form() of CGI.pm allows remote attackers to insert web script via a URL that is fed into the form's action parameter.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 9
  • Sun Solaris 8
Class:
vulnerability
Reference(s):
  • CVE-2003-0615
Product(s):
  • Perl