- Home
- CVEs with oval.title==Cross-site+scripting+%28XSS%29+vulnerability+in+mod_autoindex.c+in+the+Apache+HTTP+Server+before+2.2.6%2C+when+the+charset+on+a+server-generated+page+is+not+defined%2C+allows+remote+attackers+to+inject+arbitrary+web+script+or+HTML+via+the+P+parameter+using+the+UTF-7+charset.++NOTE%3A+it+could+be+argued+that+this+issue+is+due+to+a+design+limitation+of+browsers+that+attempt+to+perform+automatic+content+type+detection.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top