Vulnerabilities > Htdig

DATE	CVE	VULNERABILITY TITLE	RISK
2007-11-23	CVE-2007-6110	Cross-Site Scripting vulnerability in Htdig 3.2.0B6 Cross-site scripting (XSS) vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter. network htdig CWE-79	4.3
2005-04-27	CVE-2005-0085	Cross-Site Scripting vulnerability in Dig Config Parameter Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message. network htdig mandrakesoft redhat suse	6.8
2002-12-31	CVE-2002-2010	Cross-Site Scripting vulnerability in ht://Dig htsearch Cross-site scripting (XSS) vulnerability in htsearch.cgi in htdig (ht://Dig) 3.1.5, 3.1.6, and 3.2 allows remote attackers to inject arbitrary web script or HTML via the words parameter. network htdig	4.3
2001-12-06	CVE-2001-0834	Remote Denial of Service/File Disclosure vulnerability in ht://Dig htsearch CGI program in htdig (ht://Dig) 3.1.5 and earlier allows remote attackers to use the -c option to specify an alternate configuration file, which could be used to (1) cause a denial of service (CPU consumption) by specifying a large file such as /dev/zero, or (2) read arbitrary files by uploading an alternate configuration file that specifies the target file. network low complexity htdig conectiva debian suse	6.4
2000-02-29	CVE-2000-0208	Unspecified vulnerability in Htdig The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters to htsearch. network low complexity htdig	5.0

Vulnerabilities > Htdig {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Htdig"}]}

Vulnerabilities > Htdig