Vulnerabilities > Litespeed Technologies

DATE	CVE	VULNERABILITY TITLE	RISK
2007-10-23	CVE-2007-5654	Information Exposure vulnerability in Litespeed Technologies Litespeed web Server LiteSpeed Web Server before 3.2.4 allows remote attackers to trigger use of an arbitrary MIME type for a file via a "%00." sequence followed by a new extension, as demonstrated by reading PHP source code via requests for .php%00.txt files, aka "Mime Type Injection." network low complexity litespeed-technologies CWE-200	5.0
2005-11-20	CVE-2005-3695	Cross-Site Scripting vulnerability in Litespeed Technologies Litespeed web Server 2.1.5 Cross-site scripting (XSS) vulnerability in admin/config/confMgr.php in LiteSpeed Web Server 2.1.5 allows remote attackers to inject arbitrary web script or HTML via the m parameter. network litespeed-technologies	4.3

Vulnerabilities > Litespeed Technologies {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Litespeed Technologies"}]}