CVE-2002-1700 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2002-1700 Interim 1 3 2021-06-09T08:30:07Z current 2021-05-30T12:29:09Z 2021-06-09T08:30:07Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2002-1700 Cross-site scripting vulnerability (XSS) in the missing template handler in Macromedia ColdFusion MX allows remote attackers to execute arbitrary script as other users by injecting script into the HTTP request for the name of a template, which is not filtered in the resulting 404 error message. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings Cross-site scripting vulnerability (XSS) in the missing template handler in Macromedia ColdFusion MX allows remote attackers to execute arbitrary script as other users by injecting script into the HTTP request for the name of a template, which is not filtered in the resulting 404 error message. CVE-2002-1700 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N