Description
Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect (""302 Object Moved") message.
Remediation
References
Related Vulnerabilities
TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-1153)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2572)
MySQL CVE-2017-3649 Vulnerability (CVE-2017-3649)
WordPress Plugin WP-Polls Cross-Site Scripting (2.73)
WordPress Plugin Appointment Booking Calendar Multiple Vulnerabilities (1.1.7)