Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

AN HTTPD 1.41 e - Cross-Site Scripting

Related Vulnerabilities: CVE-2003-1271  
Publish Date: 06 Jan 2003
Author: D4rkGr3y
Source / Download Exploit 
                							

                source: http://www.securityfocus.com/bid/6529/info

AN HTTPD does not adequately filter HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code which will be executed in the browser of a legitimate user. All code will be executed within the context of the website running AN HTTPD.

This issue may be exploited to steal cookie-based authentication credentials from legitimate users of the website running the vulnerable software. 

http://www.target.com/[script]?<h1>HACKED</h1>aaaa..[up_to_1kb]..aaaa

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started