Shay Priel

3 exploits Active since Jun 2007
CVE-2007-3396 EXPLOITDB text WORKING POC
KeyFocus KF Web Server 3.1.0 - Cross-Site Scripting via opsubmenu Parameter
Cross-site scripting (XSS) vulnerability in index.wkf in KeyFocus (KF) web server 3.1.0 allows remote attackers to inject arbitrary web script or HTML via the opsubmenu parameter.
CVE-2007-3365 EXPLOITDB HIGH text WRITEUP
myserver < 0.8.9 - Sensitive Information Exposure via Case Sensitivity Bypass
MyServer 0.8.9 and earlier does not properly handle uppercase characters in filename extensions, which allows remote attackers to obtain sensitive information (script source code) via a modified extension, as demonstrated by post.mscgI.
CVSS 7.5
CVE-2007-3407 EXPLOITDB text WRITEUP
Sergey Lyubka Simple HTTPD <1.38 - Info Disclosure
Sergey Lyubka Simple HTTPD (shttpd) 1.38 allows remote attackers to obtain sensitive information (script source code) via a URL with a trailing encoded space (%20).