CVE-2001-0828

Published: Mar 9, 2002

Modified: Aug 8, 2024

PUBLISHED

Description

A cross-site scripting vulnerability in Caucho Technology Resin before 1.2.4 allows a malicious webmaster to embed Javascript in a hyperlink that ends in a .jsp extension, which causes an error message that does not properly quote the Javascript.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

java-servlet-crosssite-scripting(6793)

vdb-entry

x_refsource_XF

20010702 Multiple Vendor Java Servlet Container Cross-Site Scripting Vulnerability

mailing-list

x_refsource_BUGTRAQ

VU#981651

third-party-advisory

x_refsource_CERT-VN

1890

vdb-entry

x_refsource_OSVDB

2981

vdb-entry

x_refsource_BID

http://www.caucho.com/products/resin/changes.xtp

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2001-0828

Description

Affected Products

References