Description

Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page.

Remediation

References

CVE-2002-0148

Related Vulnerabilities

WordPress Plugin ReviewX-Multi-criteria Rating & Reviews for WooCommerce CSV Injection (1.6.7)

WordPress Plugin Contact Form DB-Elementor Cross-Site Scripting (1.7)

WordPress 4.1.x PHP Object Injection (4.1 - 4.1.32)

WordPress Plugin Image Optimizer by 10web-Image Optimizer and Compression Directory Traversal (1.0.25)

Dot CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-3187)

Severity

High

Classification

CVE-2002-0148

Tags

Missing Update Known Vulnerabilities