Arbitrary Script Execution via Cross-Site Scripting (XSS) in BRS WebWeaver 1.07

Arbitrary Script Execution via Cross-Site Scripting (XSS) in BRS WebWeaver 1.07

CVE-2004-2128 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site scripting (XSS) vulnerability in BRS WebWeaver 1.07 allows remote attackers to execute arbitrary script as other users via the query string to ISAPISkeleton.dll.

Learn more about our Web App Pen Testing.