- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 22805
- Проверка EDB
-
- Пройдено
- Автор
- JEREMY BAE
- Тип уязвимости
- WEBAPPS
- Платформа
- JSP
- CVE
- null
- Дата публикации
- 2003-06-17
Код:
source: https://www.securityfocus.com/bid/7969/info
Reportedly, Tmax Soft JEUS is vulnerable to a cross site-scripting attack. The vulnerability is present in the url.jsp script of the Tmax Soft JEUS server.
An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link.
It should be noted that although this vulnerability has been reported to affect Tmax Soft JEUS version 3.1.4p1, all version prior to release 3.2.2 are also reported vulnerable.
http://www.example.com/url.jsp?foo=<script>alert('XSS vulnerability exists!')</script>
- Источник
- www.exploit-db.com