CVE-2002-2318
Falcon Web Server 2.0.0.1009-2.0.0.1021 - Cross-Site Scripting via URI in Error Messages
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-2318. PoCs published by Matt Murphy.
AI-analyzed exploit summary This is a writeup describing XSS vulnerabilities in Falcon Webserver where HTML tags are not sanitized in error messages. It provides example URLs to exploit 301 and 404 error pages for arbitrary script execution.
Description
Cross-site scripting (XSS) vulnerability in Falcon web server 2.0.0.1009 through 2.0.0.1021 allows remote attackers to inject arbitrary web script or HTML via the URI, which is inserted into 301 error messages and executed by 404 error messages.
Exploits (1)
This is a writeup describing XSS vulnerabilities in Falcon Webserver where HTML tags are not sanitized in error messages. It provides example URLs to exploit 301 and 404 error pages for arbitrary script execution.