Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The list_directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset parameter in the Content-Type HTTP header, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks against Internet Explorer 7 via UTF-7 encoding.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Python 跨站脚本漏洞
Vulnerability Description
Python是Python基金会的一套开源的、面向对象的程序设计语言。该语言具有可扩展、支持模块和包、支持多种平台等特点。 Python 2.5.6c1之前版本、2.6.x版本至2.6.7 rc2之前版本、2.7.x版本至2.7.2之前版本存在跨站脚本漏洞,该漏洞源于没有在Content-Type HTTP头中放置charset参数。
CVSS Information
N/A
Vulnerability Type
N/A