2 matches found
CVE-2014-125098
A vulnerability was found in Dart httpserver up to 0.9.5 and classified as problematic. Affected by this issue is the function VirtualDirectory of the file lib/src/virtualdirectory.dart of the component Directory Listing Handler. The manipulation of the argument request.uri.path leads to cross si...
CVE-2014-125098
Dart http_server up to 0.9.5 is affected in the VirtualDirectory handler (lib/src/virtual_directory.dart). Malicious manipulation of request.uri.path enables cross-site scripting. The issue can be exploited remotely. Remediation: upgrade to version 0.9.6 (patch: 27c1cbd8125bb0369e675eb72e48218496...