CERN Proxy Server XSS Vulnerability: Remote Script Execution via Non-Existent Page

CERN Proxy Server XSS Vulnerability: Remote Script Execution via Non-Existent Page

CVE-2002-1445 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in CERN Proxy Server allows remote attackers to execute script as other users via a link to a non-existent page whose name contains the script, which is inserted into the resulting error page.

Learn more about our Cis Benchmark Audit For Server Software.