Cross-site scripting (XSS) vulnerability in Tiny Server 1.1 allows remote attackers to inject arbitrary web script or HTML via the URL.
Max CVSS
4.3
EPSS Score
0.72%
Published
2004-12-31
Updated
2018-08-13
Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via a GET request with a long filename, possibly due to a buffer overflow.
Max CVSS
5.0
EPSS Score
1.95%
Published
2004-12-31
Updated
2018-08-13
Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via malformed HTTP requests such as (1) a GET request without the HTTP version (HTTP/1.1), or (2) a request without GET or the HTTP version.
Max CVSS
5.0
EPSS Score
9.70%
Published
2004-01-24
Updated
2018-08-13
Directory traversal vulnerability in Tiny Server 1.1 allows remote attackers to read or download arbitrary files via a .. (dot dot) in the URL.
Max CVSS
5.0
EPSS Score
1.43%
Published
2004-12-31
Updated
2018-08-13
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!