3 matches found
CVE-2004-0230
Technical details beyond the public description are not provided in the supplied documents. CVE-2004-0230 describes a TCP sequence-number guessing/RST-injection denial-of-service under large window size; no remediation details are given here.
CVE-2020-25494
CVE-2020-25494 affects Xinuos OpenServer v5/v6. The vulnerability is in the CGI component cgi-bin/printbook (parameters outputform and toclevels), enabling shell metacharacter input and arbitrary command execution. Exploitation details in public sources confirm OS command injection with remote, u...
CVE-2020-25495
Xinuo (formerly SCO) Openserver v5/v6 is affected by a reflected XSS in the web interface, exploitable via the 'section' parameter due to inadequate input validation. Impact: arbitrary script execution and potential data leakage for users who load the affected pages. Remediation: apply the latest...