header-logo
Suggest Exploit
vendor:
BremsServer
by:
SecurityFocus
4.3
CVSS
MEDIUM
Cross-Site Scripting
79
CWE
Product Name: BremsServer
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2003

BremsServer Cross-Site Scripting Vulnerability

BremsServer is vulnerable to Cross-Site Scripting (XSS) attacks due to the server failing to check or filter user strings that are sent to the server. An attacker can exploit this vulnerability by creating a link that includes embedded malicious HTML and script code and enticing a user to follow it.

Mitigation:

Input validation should be used to ensure that user-supplied data is properly sanitized.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9491/info

BremsServer has been reported to contain cross-site scripting vulnerabilities. This issue is due to the server failing to check or filter user strings that are sent to the server. An attacker may exploit these issues by creating a link that includes embedded malicious HTML and script code and enticing a user to follow it. 

http://www.example.com/<script>alert("Test")</script>

Navigation

Suggest Exploit

Services By CQR