Home / exploitsPDF  

Lil' HTTP Server 2.2 Cross Site Scripting

Posted on 27 May 2011

Lil' HTTP Server v2.2 Default CGI From Xss Vulnerability Discription : In Lil' HTTP server 2.2v come with some Default applications in "CGI Form Demo" Applicatio they alows you to submit your name and e-mail . there is a XSS vuln in submit application Sample : Reffernce : - http://treasuresec.com [Treasure's Security Blog] - http://www.summitcn.com/lilhttp/lildocs.html - http://en.wikipedia.org/wiki/Cross-site_scripting