← CVECheck
HomeVulnerabilities

CVE-2001-0948 — HIGH severity vulnerability (Cross-site scripting (CSS) vulnerability in ValiCert Enterpr)

Cross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's description, which is executed when the certificate is viewed.

CVE IDCVE-2001-0948
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-12-04
Last modified2026-04-16
DescriptionCross-site scripting (CSS) vulnerability in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to execute arbitrary code or display false information by including HTML or script in the certificate's description, which is executed when the certificate is viewed.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →