← back
CVE-2001-0948

CVE-2001-0948

EPSS 1.7%
Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's description, which is executed when the certificate is viewed.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=100749428517090&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/7650http://www.securityfocus.com/bid/3619http://www.valicert.com/support/security_advisory_eva.html