Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into web pages via (1) test.php, (2) test.shtml, or (3) redir.exe.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OmniHTTPD示例脚本远程跨站脚本执行漏洞
Vulnerability Description
OmniHTTPD是一款适用在Microsoft Windows操作系统上的WEB服务器程序,OmniHTTPD支持多个CGI扩展来提供动态内容。 OmniHTTPD中包含的多个示例程序对用户提供的输入缺少正确检查,远程攻击者可以利用这个漏洞进行跨站脚本执行攻击。 OmniHTTPD系统包含的test.php和test.shtml脚本代码对用户输入缺少过滤,攻击者可以构建包含恶意代码的test.php或者test.shtml请求,当其他用户查看链接时,恶意代码就会在用户浏览器中执行,导致基于认证的Cook
CVSS Information
N/A
Vulnerability Type
N/A