Lucene search

K

Nokia Electronic Documentation 5.0 - Cross-Site Scripting

๐Ÿ—“๏ธย 15 Sep 2003ย 00:00:00Reported byย Ollie WhitehouseTypeย 
exploitdb
ย exploitdb
๐Ÿ”—ย www.exploit-db.com๐Ÿ‘ย 34ย Views

Show more
Related
Code
ReporterTitlePublishedViews
Family
Cvelist
CVE-2003-0801
18 Sep 200304:00
โ€“cvelist
NVD
CVE-2003-0801
6 Oct 200304:00
โ€“nvd
CVE
CVE-2003-0801
6 Oct 200304:00
โ€“cve
source: https://www.securityfocus.com/bid/8626/info

Nokia Electronic Documentation (NED) has been reported prone to a cross-site scripting vulnerability. The issue has been conjectured to present itself due to a lack of sufficient sanitization performed on user supplied data.

A remote attacker may exploit this issue by enticing a target user to follow a malicious link to the affected Nokia Electronic Documentation site, which contains embedded HTML and script code. The attacker-supplied code would potentially be rendered in the user's browser when the link is followed.

It should be noted that although this vulnerability has been reported to affect Nokia Electronic Documentation version 5.0, previous versions might also be affected.


http://www.example.com/docs/<script>alert('@stake');</script> 

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
15 Sep 2003 00:00Current
7.4High risk
Vulners AI Score7.4
EPSS0.002
34
.json
Report