Computer Security
[EN] securityvulns.ru no-pyccku


Apache crossite scripting
Published:25.07.2006
Source:
SecurityVulns ID:6409
Type:remote
Threat Level:
7/10
Description:By using Expect: header it's possible to inject HTML code to another site's context.
Affected:APACHE : Apache 1.3
 APACHE : Apache 2.0
 APACHE : Apache 2.2
 IBM : IBM HTTP Server 6.1
 IBM : IBM HTTP Server 6.0
Original documentdocumentSECUNIA, [SA21174] IBM HTTP Server "Expect" Header Cross-Site Scripting (25.07.2006)
 documentSECUNIA, [SA21172] Apache "Expect" Header Cross-Site Scripting Vulnerability (25.07.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod