Release DateDec 22, 2011 |
Severitymedium |
ImpactRemote attackers can execute arbitrary code or gain sensitive information. |
DescriptionThis indicates an attempt to exploit a Cross Site Scripting vulnerability.Cross-site scripting (XSS) is a popular web security issue. If a web application doesn't properly validate input from one user and uses it in the output for other users, attackers can exploit it to send malicious code to other users. |
Affected ProductsAll web application environments are susceptible to cross-site scripting. |
Recommended ActionsReview the code of web application and check all places where user input could possibly become part of the output for other users. |
Coverage IPS
VCM |
Reference/shttp://cwe.mitre.org/data/definitions/79.html |
