CVE-2008-0409
HFS HTTP File Server < 2.2b - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in HTTP File Server (HFS) before 2.2c allows remote attackers to inject arbitrary web script or HTML via the userinfo subcomponent of a URL.
References (8)
Scores
EPSS
0.0050
EPSS Percentile
65.8%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
hfs/http_file_server
< 2.2b
Timeline
Published
Jan 29, 2008
Tracked Since
Feb 18, 2026