CVE-2004-2254

SurgeLDAP 1.0g Build 12, and possibly other versions before 1.0h, allows remote attackers to bypass authentication for the administration interface via a direct request to admin.cgi with a modified utoken parameter...

Zeus Web Server 4.x - Admin Interface VS_Diag.cgi Cross-Site Scripting

Zeus Web Server 4.x - Admin Interface VSDiag.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/7751/info The Zeus Web Server contains a web based administration interface that is vulnerable to cross site scripting attacks. Due to insufficient sanitization of user-supplied input, ...