Unrated severityNVD Advisory· Published Aug 12, 2001· Updated Jun 16, 2026
CVE-2001-1157
CVE-2001-1157
Description
Baltimore Technologies WEBsweeper 4.0 and 4.02 does not properly filter Javascript from HTML pages, which could allow remote attackers to bypass the filtering via (1) an extra leading < and one or more characters before the SCRIPT tag, or (2) tags using Unicode.
Affected products
3cpe:2.3:o:baltimore_technologies:websweeper:4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:baltimore_technologies:websweeper:4.0:*:*:*:*:*:*:*
- cpe:2.3:o:baltimore_technologies:websweeper:4.02:*:*:*:*:*:*:*
- (no CPE)range: 4.0, 4.02
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/archive/1/203821nvdVendor Advisory
- www.securityfocus.com/bid/3172nvdVendor Advisory
- www.securityfocus.com/bid/3173nvdVendor Advisory
News mentions
0No linked articles in our index yet.