CVE-2007-6388

EPSS 84.6%

發布日:2008/1/8修改日:2026/4/28

描述

Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

受影響套件(1)

Debian/apache2from 0, < 2.2.8-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6388