[] NeoSense
E X P L O I T S
title author type platform port cve id

GoAhead Web Server 2.1.x - Error Page Cross-Site Scripting

Author: Matt Moore
type: remote
platform: windows
port: 
date_added: 2002-07-10 
date_updated: 2012-09-30 
verified: 1 
codes: CVE-2002-0681;OSVDB-6662 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/5198/info

A vulnerability has been reported for GoAhead WebServer 2.1. Reportedly, it is possible for attackers to launch cross site scripting attacks against vulnerable systems.

GoAhead WebServer includes unsanitized requested URLs when displaying a 404 error page. An attacker may be able to trick a user into following a link which includes malicious script code, and executing the attack.

GoAhead-server/SCRIPTalert(document.domain)/SCRIPT
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.