MidnightBSD

Advisories for min-http-server_project

CVE-2019-5457 LOW

Cross-site scripting (XSS) vulnerability in min-http-server (all versions) allows an attacker with access to the server file system to execute arbitrary JavaScript code in victim's browser.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
min-http-server_project min-http-server 1.0.2
min-http-server_project min-http-server 1.0.0
min-http-server_project min-http-server 1.0.6
min-http-server_project min-http-server 1.0.4