Description

Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect (""302 Object Moved") message.

Remediation

References

CVE-2002-0075

Related Vulnerabilities

Liferay Portal Insertion of Sensitive Information Into Sent Data Vulnerability (CVE-2025-43768)

MySQL CVE-2023-21982 Vulnerability (CVE-2023-21982)

WordPress Plugin Adminer Multiple Cross-Site Scripting Vulnerabilities (1.4.3)

Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1599)

Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-8906)

Severity

High

Classification

CVE-2002-0075

Tags

Missing Update Known Vulnerabilities