Vivisimo Clustering Engine - Search Script Cross-Site Scripting Vulnerability

ID EDB-ID:23268
Type exploitdb
Reporter ComSec
Modified 2003-10-21T00:00:00


Vivisimo Clustering Engine 0 Search Script Cross-Site Scripting Vulnerability. CVE-2003-1519. Webapps exploit for java platform


Vivisimo Clustering Engine reported prone to cross-site scripting vulnerability. The problem occurs due to insufficient sanitization of parameters passed to the search script. As a result, an attacker may be capable of constructing a link designed to execute arbitrary script code within the browser of a user who follows it.<script>alert(document.domain)</script>