[] NeoSense
E X P L O I T S
title author type platform port cve id

ACWeb 1.14/1.8 - Cross-Site Scripting

Author: DownBload
type: remote
platform: linux
port: 
date_added: 2002-09-25 
date_updated: 2012-10-09 
verified: 1 
codes: CVE-2002-2171;OSVDB-59188 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/5793/info

acWEB is prone to cross-site scripting attacks. It is possible to construct a malicious link to the web server which contains arbitrary script code. When the link is visited, the script code will be executed in the web client of the user visiting the link. The code will be executed in the context of the webserver.

http://www.victim.com/%db<script>alert('test');</script>/
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.