| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-3396 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.wkf in KeyFocus (KF) web server 3.1.0 allows remote attackers to inject arbitrary web script or HTML via the opsubmenu parameter.
|
16-10-2018 - 16:49 | 26-06-2007 - 17:30 | |
| CVE-2002-2403 | 5.0 |
Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences.
|
05-09-2008 - 20:33 | 31-12-2002 - 05:00 | |
| CVE-2002-1032 | 7.5 |
Buffer overflow in KeyFocus (KF) web server 1.0.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed HTTP header.
|
05-09-2008 - 20:29 | 04-10-2002 - 04:00 | |
| CVE-2002-1031 | 5.0 |
KeyFocus (KF) web server 1.0.2 allows remote attackers to list directories and read restricted files via an HTTP request containing a %00 (null) character.
|
05-09-2008 - 20:29 | 04-10-2002 - 04:00 |