Stored Cross-Site Scripting in simplehttpserver
Simplehttpserver prior to version 0.1.0 are vulnerable to stored cross-site scripting XSS. To be exploited an attacker needs to control the filename of a file that is used in the directory listing output. This version is patched in 0.1.0...