2 matches found
CVE-2006-4199
Cross-site scripting XSS vulnerability in Soft3304 04WebServer 1.83 and earlier allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly sanitized before it is returned in an error page, a different vulnerability than CVE-2004-1512...
CVE-2004-1512
CVE-2004-1512 affects 04WebServer 1.42 via an XSS in Response_default.html. The vulnerability allows remote attackers to execute arbitrary script/HTML because URL script code is not quoted in the resulting default error page. Connected documents confirm this as the issue, but do not provide explo...