Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's description, which is executed when the certificate is viewed.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Valicert |
|
Configuration 1 [-]
|
No data.
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-08T04:37:06.779Z
Reserved: 2002-01-31T00:00:00
Link: CVE-2001-0948
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2001-12-04T05:00:00.000
Modified: 2025-04-03T01:03:51.193
Link: CVE-2001-0948
Redhat
No data.