← CVECheck
HomeVulnerabilities

CVE-2002-0148 — HIGH severity vulnerability (Cross-site scripting vulnerability in Internet Information S)

Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page.

CVE IDCVE-2002-0148
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-04-22
Last modified2026-04-16
DescriptionCross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →