CVE-2005-4502
CVE-2005-4502
Cross-site scripting (XSS) vulnerability in httprint v202, and possibly other versions before v301, allows remote attackers to inject arbitrary web script or HTML via the Server field in an HTTP response, which is not sanitized before being displayed to the user.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/26966unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040532.htmlhttp://net-square.com/httprint/#historyhttp://secunia.com/advisories/18208http://securitytracker.com/id?1015403https://exchange.xforce.ibmcloud.com/vulnerabilities/23885http://www.cybsec.com/vuln/CYBSEC_Security_Advisory_httprint_Multiple_Vulnerabilities.pdfhttp://www.securityfocus.com/archive/1/420101/100/0/threadedhttp://www.securityfocus.com/bid/16031http://www.vupen.com/english/advisories/2005/3070