2 matches found
CVE-2005-2453
CVE-2005-2453 describes a cross-site scripting (XSS) vulnerability in NetworkActiv Web Server. The affected products include Web Server versions 1.0, 2.0.0.6, 3.0.1.1, and 3.5.13, with the potential for injection of arbitrary web script or HTML via the query string. The connected documents corrob...
CVE-2006-0815
Summary of CVE-2006-0815 : Affects NetworkActiv Web Server 3.5.15. The vulnerability arises from improper validation of filename extensions when a forward slash is included in a URL, enabling a remote attacker to disclose the source code of scripts hosted on the server (information disclosure). I...