header-logo
Suggest Exploit
vendor:
N/A
by:
SecurityFocus
7.5
CVSS
HIGH
Cross-Site Scripting (XSS)
79
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

A vulnerability has been reported to be present in the software that may allow a remote attacker to execute HTML or script code in a user’s browser.

A vulnerability has been reported in the software that may allow a remote attacker to execute HTML or script code in a user's browser. It has been reported that the problem arises when the software returns an error message to the user that may contain unsanitized data. The script code would run in the context of the user running the vulnerable software.

Mitigation:

Input validation should be used to ensure that user-supplied data is properly sanitized.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9261/info

A vulnerability has been reported to be present in the software that may allow a remote attacker to execute HTML or script code in a user's browser.

It has been reported that the problem arises when the software returns an error message to the user that may contain unsanitized data. The script code would run in the context of the user running the vulnerable software. 

http://www.example.com:8080/<script>alert('XSS example');</script>

Navigation

Suggest Exploit

Services By CQR