Vulnerabilities > Http Commander
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-30 | CVE-2007-0583 | Cross-Site Scripting vulnerability in Http Commander Http Commander 6.0 Multiple cross-site scripting (XSS) vulnerabilities in HTTP Commander 6.0, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) LogoffMessage parameter to logofflast.aspx or the (2) txtUsername parameter to Default.aspx. network http-commander | 4.3 |
2003-12-31 | CVE-2003-1168 | Path Disclosure vulnerability in HTTP Commander HTTP Commander 4.0 allows remote attackers to obtain sensitive information via an HTTP request that contains a . | 5.0 |
2003-12-31 | CVE-2003-1166 | Directory Traversal vulnerability in Http Commander Http Commander 4.0 Directory traversal vulnerability in (1) Openfile.aspx and (2) Html.aspx in HTTP Commander 4.0 allows remote attackers to view arbitrary files via a .. | 5.0 |