Cross-site scripting (XSS) vulnerability in Slashcode CVS releases June 17 through July 1 2002 allows remote attackers to execute arbitrary script as other users by injecting script into the paragraph <P> tag.

BID:5140 | URL:http://www.securityfocus.com/bid/5140 | BUGTRAQ:20020702 Re: XSS in Slashcode | URL:http://online.securityfocus.com/archive/1/280255 | BUGTRAQ:20020702 XSS in Slashcode | URL:http://online.securityfocus.com/archive/1/280218 | XF:slashcode-cvs-xss(9473) | URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/9473