← CVECheck
HomeVulnerabilities

CVE-2002-1335 — MEDIUM severity vulnerability (Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does n)

Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies.

CVE IDCVE-2002-1335
SeverityMEDIUM
CVSS score4.3
CVSS vectorAV:N/AC:M/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2002-12-11
Last modified2026-04-16
DescriptionCross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →