Vulnerability   
Search   
    Search 210752 CVE descriptions
and 93608 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.11010
Category:CGI abuses
Title:WebSphere Cross Site Scripting
Summary:NOSUMMARY
Description:Description:
The remote web server seems to be vulnerable to the Cross Site Scripting
vulnerability. The vulnerability is caused by the result returned to the
user when a non-existing file is requested (e.g. the result contains the
JavaScript provided in the request).
The vulnerability would allow an attacker to make the server present the
user with the attacker's JavaScript/HTML code.
Since the content is presented by the server, the user will give it
the trust level of the server (for example,
the trust level of banks, shopping centers, etc. would usually be high).

Risk factor : Medium

Solution : Upgrade to the latest version of WebSphere


Cross-Ref: BugTraq ID: 2401
Copyright(c) 2002 Renaud Deraison

This is only one of 93608 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.