https://www.exploit-db.com/exploits/22805

漏洞细节尚未披露

source: http://www.securityfocus.com/bid/7969/info

Reportedly, Tmax Soft JEUS is vulnerable to a cross site-scripting attack. The vulnerability is present in the url.jsp script of the Tmax Soft JEUS server.

An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link.

It should be noted that although this vulnerability has been reported to affect Tmax Soft JEUS version 3.1.4p1, all version prior to release 3.2.2 are also reported vulnerable.

http://www.example.com/url.jsp?foo=<script>alert('XSS vulnerability exists!')</script>