RSS   Vulnerabilities for 'Pegasi web server'   RSS

2004-12-31
 
CVE-2004-2618

 

 
Cross-site scripting (XSS) vulnerability in Pegasi Web Server (PWS) 0.2.2 allows remote attackers to inject arbitrary web script or HTML via the URI, directly after the initial '/' (slash).

 
 
CVE-2004-2617

 

 
Directory traversal vulnerability in Pegasi Web Server (PWS) 0.2.2 allows remote attackers to read files outside of the web root via a .. (dot dot) directly after the initial '/' (slash) in the URI.

 


Copyright 2024, cxsecurity.com

 

Back to Top