Cross-site scripting (XSS) vulnerability in the advanced search mechanism (webapps/search/advanced.jsp) in Sun Java System Web Server 6.1 before SP9 and 7.0 before Update 3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, probably related to the next parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun java system web server 6.1 |
||
sun java system web server 7.0 |