exploitDog

CVE-2001-1441

Опубликовано: 02 июл. 2001

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in VisualAge for Java 3.5 Professional allows remote attackers to execute JavaScript on other clients via the URL, which injects the script in the resulting error message.

Ссылки

http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
http://www.kb.cert.org/vuls/id/270083
Exploit
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/6793
http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
http://www.kb.cert.org/vuls/id/270083
Exploit
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/6793

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:visualage_for_java:3.5:*:pro:*:*:*:*:*

EPSS

Процентиль: 78%

0.01198

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-76h9-8f7f-rp9m

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in VisualAge for Java 3.5 Professional allows remote attackers to execute JavaScript on other clients via the URL, which injects the script in the resulting error message.

EPSS

Процентиль: 78%

0.01198

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other