5 matches found
CVE-2018-18940
servlet/SnoopServlet a servlet installed by default in Netscape Enterprise 3.63 has reflected XSS via an arbitrary parameter=XSS in the query string. A remote unauthenticated attacker could potentially exploit this vulnerability to supply malicious HTML or JavaScript code to a vulnerable web...
CVE-2018-18940
servlet/SnoopServlet a servlet installed by default in Netscape Enterprise 3.63 has reflected XSS via an arbitrary parameter=XSS in the query string. A remote unauthenticated attacker could potentially exploit this vulnerability to supply malicious HTML or JavaScript code to a vulnerable web...
CVE-2018-18940
CVE-2018-18940 : Reflected XSS in Netscape Enterprise 3.63 via an arbitrary query string parameter (SnoopServlet by default). A remote, unauthenticated attacker can supply HTML/JavaScript that is reflected back and executed in the victim’s browser. The issue centers on improper sanitization of us...
Netscape Enterprise 3.63 Cross Site Scripting
alert"XSS" The server response: Request URL: http://X.X.X.X/servlet/SnoopServlet Request information: Request method: GET Request URI: /servlet/SnoopServlet Request protocol: HTTP/1.1 Servlet path: /servlet/SnoopServlet Path info: Path translated:...
Netscape Enterprise 3.63 Cross Site Scripting Vulnerability
Exploit for multiple platform in category web applications alert"XSS" The server response: Request URL: http://X.X.X.X/servlet/SnoopServlet Request information: Request method: GET Request URI: /servlet/SnoopServlet Request protocol: HTTP/1.1 Servlet path: /servlet/SnoopServlet Path info: Path...