Vulnerability Details CVE-2001-0824
Cross-site scripting vulnerability in IBM WebSphere 3.02 and 3.5 FP2 allows remote attackers to execute Javascript by inserting the Javascript into (1) a request for a .JSP file, or (2) a request to the webapp/examples/ directory, which inserts the Javascript into an error page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.8%
CVSS Severity
CVSS v2 Score 7.5
Products affected by CVE-2001-0824
-
cpe:2.3:a:ibm:websphere_application_server:3.0.2
-
cpe:2.3:a:ibm:websphere_application_server:3.5