CVE-2001-0987
CGIWrap < 3.7 - Cross-Site Scripting via Error Message Injection
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2001-0987. PoCs published by TAKAGI Hiromitsu.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in CGIWrap, where user-supplied input is not properly filtered, allowing the execution of arbitrary JavaScript code in the context of the victim's browser.
Description
Cross-site scripting vulnerability in CGIWrap before 3.7 allows remote attackers to execute arbitrary Javascript on other web clients by causing the Javascript to be inserted into error messages that are generated by CGIWrap.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in CGIWrap, where user-supplied input is not properly filtered, allowing the execution of arbitrary JavaScript code in the context of the victim's browser.