Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbBadpack3tEDB-ID:22770
HistoryJun 12, 2003 - 12:00 a.m.

Infinity CGI Exploit Scanner 3.11 - Cross-Site Scripting

2003-06-1200:00:00
badpack3t
www.exploit-db.com
16

7.4 High

AI Score

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/7910/info

Infinity CGI Exploit Scanner is reported to be prone to a cross-site scripting vulnerability. An attacker could exploit this issue to creating a malicious link to a site hosting the software that contains hostile HTML and script code. If this link is visited by a web user, the attacker-supplied code could be interpreted in their browser.

http://www.example.com/cgi-bin/nph-exploitscanget.cgi?host=%3Cscript%3Ealert%28document%2Ecookie%29%3C%2Fscript%3E&port=80&idsbypass=0&errchk=1

7.4 High

AI Score

Confidence

Low

JSON