CVE-2002-0166

Cross-site scripting vulnerability in analog before 5.22 allows remote attackers to execute Javascript via an HTTP request containing the script, which is entered into a web logfile and not properly filtered by analog during display.

Date published : 2002-06-25

http://www.securityfocus.com/bid/4389

http://www.debian.org/security/2002/dsa-125