Vulnerability Details CVE-2001-1441
Cross-site scripting (XSS) vulnerability in VisualAge for Java 3.5 Professional allows remote attackers to execute JavaScript on other clients via the URL, which injects the script in the resulting error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.0%
CVSS Severity
CVSS v2 Score 6.8
References
- http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
- http://www.kb.cert.org/vuls/id/270083
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6793
- http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
- http://www.kb.cert.org/vuls/id/270083
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6793
Products affected by CVE-2001-1441
-
cpe:2.3:a:ibm:visualage_for_java:3.5