Filtered by vendor Summit Computer Networks Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2002-2076 1 Summit Computer Networks 1 Lil Http 2024-11-20 N/A
Directory traversal vulnerability in Lil' HTTP server 2.1 and 2.2 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request.
CVE-2002-1009 1 Summit Computer Networks 1 Lil Http Server 2024-11-20 N/A
Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) "Name" or (2) "E-mail" parameters.
CVE-2002-1008 1 Summit Computer Networks 1 Lil Http Server 2024-11-20 N/A
Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlcount.cgi that contains the script, which is not filtered when the REPORT capability prints the original request.
CVE-2002-0304 1 Summit Computer Networks 1 Lil Http Server 2024-11-20 N/A
Lil HTTP Server 2.1 allows remote attackers to read password-protected files via a /./ in the HTTP request.