Description
Multiple cross-site scripting (XSS) vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into web pages via (1) test.php, (2) test.shtml, or (3) redir.exe.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Matthew Murphy · textremotewindows
https://www.exploit-db.com/exploits/21754
exploitdb
WORKING POC
VERIFIED
by Matthew Murphy · textremotewindows
https://www.exploit-db.com/exploits/21753
References (3)
Core 3
Core References
Exploit, Vendor Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-08/0263.html
Exploit, Vendor Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-08/0264.html
Exploit, Vendor Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-08/0266.html
Scores
EPSS
0.0045
EPSS Percentile
63.6%
Details
Status
published
Products (1)
omnicron/omnihttpd
Published
Jun 09, 2003
Tracked Since
Feb 18, 2026