Cross-site scripting (XSS) vulnerability in Mephistoles httpd 0.6.0 final allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the URL.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mephistoles_internet_suite | mephistoles_httpd | 0.6_p2 |
| mephistoles_internet_suite | mephistoles_httpd | 0.6_final |
| mephistoles_internet_suite | mephistoles_httpd | 0.6_p1 |