Vulnerabilities > Redhat > Interchange
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-15 | CVE-2020-12685 | Cross-site Scripting vulnerability in Redhat Interchange XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through 5.11.x allows remote attackers to steal credentials or data via browser JavaScript. | 4.3 |
| 2003-10-27 | CVE-2003-1138 | Unspecified vulnerability in Redhat Interchange 2.0.4021.5 The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attackers to list directory contents, even if auto indexing is turned off and there is a default web page configured, via a GET request containing a double slash (//). | 5.0 |
| 2002-09-05 | CVE-2002-0874 | Denial-Of-Service vulnerability in Interchange Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files. | 5.0 |