CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3562

Cross-site scripting (XSS) vulnerability in Xerver HTTP Server 4.32 allows remote attackers to inject arbitrary web script or HTML via the currentPath parameter in a chooseDirectory action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.9%

CVSS Severity

CVSS v2 Score 2.6

References

http://secunia.com/advisories/36681
http://www.exploit-db.com/exploits/9718
http://www.securityfocus.com/bid/36457
http://secunia.com/advisories/36681
http://www.exploit-db.com/exploits/9718
http://www.securityfocus.com/bid/36457

Products affected by CVE-2009-3562

Xerver » Xerver » Version: 4.32

cpe:2.3:a:xerver:xerver:4.32

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3562

Products

Pricing

Contact Us