Vulnerabilities > Gnome > Dwarf Http Server

DATE CVE VULNERABILITY TITLE RISK
2006-03-13 CVE-2006-0820 Input Validation vulnerability in Gnome Dwarf Http Server 1.3.2
Cross-site scripting (XSS) vulnerability in Dwarf HTTP Server 1.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified error messages.
network
gnome
4.3
2006-03-13 CVE-2006-0819 Input Validation vulnerability in Gnome Dwarf Http Server 1.3.2
Dwarf HTTP Server 1.3.2 allows remote attackers to obtain the source code of JSP files via (1) dot, (2) space, (3) slash, or (4) NULL characters in the filename extension of an HTTP request.
network
low complexity
gnome
7.8