Vulnerability Description
Cross-site scripting vulnerability in CGIWrap before 3.7 allows remote attackers to execute arbitrary Javascript on other web clients by causing the Javascript to be inserted into error messages that are generated by CGIWrap.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nathan Neulinger | Cgiwrap | <= 3.7 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0499.htmlVendor Advisory
- http://cgiwrap.sourceforge.net/changes.htmlPatch
- http://www.osvdb.org/1909
- http://www.securityfocus.com/bid/3084ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6886
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0499.htmlVendor Advisory
- http://cgiwrap.sourceforge.net/changes.htmlPatch
- http://www.osvdb.org/1909
- http://www.securityfocus.com/bid/3084ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6886
FAQ
What is CVE-2001-0987?
CVE-2001-0987 is a vulnerability with a CVSS score of 7.5 (HIGH). Cross-site scripting vulnerability in CGIWrap before 3.7 allows remote attackers to execute arbitrary Javascript on other web clients by causing the Javascript to be inserted into error messages that ...
How severe is CVE-2001-0987?
CVE-2001-0987 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0987?
Check the references section above for vendor advisories and patch information. Affected products include: Nathan Neulinger Cgiwrap.