W3C » Cern Httpd : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in CERN Proxy Server allows remote attackers to execute script as other users via a link to a non-existent page whose name contains the script, which is inserted into the resulting error page.
Max CVSS
4.3
EPSS Score
0.58%
Published
2002-08-12
Updated
2008-09-05
The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL.
Max CVSS
7.5
EPSS Score
0.73%
Published
2000-01-18
Updated
2008-09-10
2 vulnerabilities found