MidnightBSD

Advisories for mephistoles_internet_suite

CVE-2004-2096 MEDIUM

Cross-site scripting (XSS) vulnerability in Mephistoles httpd 0.6.0 final allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mephistoles_internet_suite mephistoles_httpd 0.6_p2
mephistoles_internet_suite mephistoles_httpd 0.6_final
mephistoles_internet_suite mephistoles_httpd 0.6_p1