Vulnerabilities > CVE-2002-1455 - Cross-Site Scripting vulnerability in OmniHTTPD

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
omnicron
exploit available

Summary

Multiple cross-site scripting (XSS) vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into web pages via (1) test.php, (2) test.shtml, or (3) redir.exe.

Vulnerable Configurations

Part Description Count
Application
Omnicron
1

Exploit-Db

  • descriptionOmniHTTPd 1.1/2.0.x/2.4 test.php Sample Application XSS. CVE-2002-1455. Remote exploit for windows platform
    idEDB-ID:21753
    last seen2016-02-02
    modified2002-08-26
    published2002-08-26
    reporterMatthew Murphy
    sourcehttps://www.exploit-db.com/download/21753/
    titleOmniHTTPd 1.1/2.0.x/2.4 test.php Sample Application XSS
  • descriptionOmniHTTPd 1.1/2.0.x/2.4 test.shtml Sample Application XSS. CVE-2002-1455. Remote exploit for windows platform
    idEDB-ID:21754
    last seen2016-02-02
    modified2002-08-26
    published2002-08-26
    reporterMatthew Murphy
    sourcehttps://www.exploit-db.com/download/21754/
    titleOmniHTTPd 1.1/2.0.x/2.4 test.shtml Sample Application XSS