VYPR
Unrated severityNVD Advisory· Published Aug 12, 2001· Updated Jun 16, 2026

CVE-2001-1157

CVE-2001-1157

Description

Baltimore Technologies WEBsweeper 4.0 and 4.02 does not properly filter Javascript from HTML pages, which could allow remote attackers to bypass the filtering via (1) an extra leading < and one or more characters before the SCRIPT tag, or (2) tags using Unicode.

Affected products

3
  • cpe:2.3:o:baltimore_technologies:websweeper:4.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:baltimore_technologies:websweeper:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:baltimore_technologies:websweeper:4.02:*:*:*:*:*:*:*
    • (no CPE)range: 4.0, 4.02

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.