Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlcount.cgi that contains the script, which is not filtered when the REPORT capability prints the original request.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Lil_http_server | Summit_computer_networks | 2.1 (including) | 2.1 (including) |
Lil_http_server | Summit_computer_networks | 2.2 (including) | 2.2 (including) |