header-logo
Suggest Exploit
vendor:
activeWeb contentserver
by:
Unknown
N/A
CVSS
N/A
Client-side input-validation vulnerability
CWE
Product Name: activeWeb contentserver
Affected Version From:
Affected Version To:
Patch Exists: Unknown
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

activeWeb contentserver Client-side Input-Validation Vulnerability

activeWeb contentserver is prone to a client-side input-validation vulnerability because the application fails to sufficiently sanitize user-supplied data. An attacker can exploit these input-validation vulnerabilities to perform various attacks (e.g. cross-site scripting, SQL injection, etc.).

Mitigation:

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/24898/info

activeWeb contentserver is prone to a client-side input-validation vulnerability because the application fails to sufficiently sanitize user-supplied data.

An attacker can exploit these input-validation vulnerabilities to perform various attacks (e.g. cross-site scripting, SQL injection, etc.).

http://127.0.0.1/path/search?q=%22%3E%3Cscript%3Ealert%28%27bl4ck%27%29%3C%2Fscript%3E

Navigation

Suggest Exploit

Services By CQR