CVE-2001-0987

Опубликовано: 22 июл. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Cross-site scripting vulnerability in CGIWrap before 3.7 allows remote attackers to execute arbitrary Javascript on other web clients by causing the Javascript to be inserted into error messages that are generated by CGIWrap.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-07/0499.html
Vendor Advisory
http://cgiwrap.sourceforge.net/changes.html
Patch
http://www.osvdb.org/1909
http://www.securityfocus.com/bid/3084
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6886
http://archives.neohapsis.com/archives/bugtraq/2001-07/0499.html
Vendor Advisory
http://cgiwrap.sourceforge.net/changes.html
Patch
http://www.osvdb.org/1909
http://www.securityfocus.com/bid/3084
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6886

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nathan_neulinger:cgiwrap:*:*:*:*:*:*:*:*

Версия до 3.7 (включая)

EPSS

Процентиль: 93%

0.09551

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-mhfv-4w4f-wrrh

github

больше 3 лет назад