2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Anon Proxy Server before 0.101 allow remote attackers to inject arbitrary web script or HTML via the URI, which is later displayed by 1 log.php or 2 logerror.php, a different vulnerability than CVE-2007-6459...
CVE-2007-6459
The CVE-2007-6459 entry affects Anon Proxy Server 0.100 (and likely 0.101). The vulnerability allows remote command execution via shell metacharacters in the host parameter to diagdns.php and in the host (and possibly the port) parameter to diagconnect.php. This is explicitly described as a separ...