CVE-2002-1453

MyWebServer 1.0.2 - Cross-Site Scripting via Error Message

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1453. PoCs published by D4rkGr3y.

AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in MyWebServer 1.0.2 by injecting arbitrary content into a generated page via an oversized HTTP request. The provided URL example shows how an attacker can inject HTML content to deface a page.

Description

Cross-site scripting (XSS) vulnerability in MyWebServer 1.0.2 allows remote attackers to insert script and HTML via a long request followed by the malicious script, which is echoed back to the user in an error message.

Exploits (1)

exploitdb WORKING POC VERIFIED
by D4rkGr3y · textremotewindows
https://www.exploit-db.com/exploits/21710

This exploit demonstrates a cross-site scripting (XSS) vulnerability in MyWebServer 1.0.2 by injecting arbitrary content into a generated page via an oversized HTTP request. The provided URL example shows how an attacker can inject HTML content to deface a page.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: MyWebServer 1.0.2
No auth needed
Prerequisites: A vulnerable version of MyWebServer · User interaction to follow a malicious URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=102935720109934&w=2
Exploit mailing-list x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0077.html
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5470
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9861.php

Scores

EPSS 0.0391
EPSS Percentile 88.9%

Details

Status published
Products (1)
mywebserver/mywebserver 1.0.2
Published Aug 14, 2002
Tracked Since Feb 18, 2026