Jetty JSP Servlet Engine Cross-Site Scripting (XSS) Vulnerability

Jetty JSP Servlet Engine Cross-Site Scripting (XSS) Vulnerability

CVE-2002-1533 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

Cross-site scripting (XSS) vulnerability in Jetty JSP servlet engine allows remote attackers to insert arbitrary HTML or script via an HTTP request to a .jsp file whose name contains the malicious script and some encoded linefeed characters (%0a).

Learn more about our Web Application Penetration Testing UK.