Description
Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect (""302 Object Moved") message.
Remediation
References
Related Vulnerabilities
WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.1)
Drupal Core 4.6.x Form Action Attribute Injection (4.6.0 - 4.6.9)
WordPress Plugin WP125 Multiple Cross-Site Scripting Vulnerabilities (1.4.4)
Oracle Database Server CVE-2012-0534 Vulnerability (CVE-2012-0534)
WordPress Plugin WordPress File Upload Cross-Site Request Forgery (2.4.1)