Description
Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect (""302 Object Moved") message.
Remediation
References
Related Vulnerabilities
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-9049)
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2009-1891)
Oracle JRE CVE-2013-2466 Vulnerability (CVE-2013-2466)
qdPM Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-26180)