Interchange

interchange

Vendor: Redhat • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-12685 1Redhat 1Interchange Nov 21, 2024 May 15, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through 5.11.x allows remote attackers to steal credentials or data via browser JavaScript.
CVE-2003-1138 1Redhat 1Interchange Apr 16, 2026 Oct 27, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attackers to list directory contents, even if auto indexing is turned off and there is a default web page configured, via a GET...Show more The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attackers to list directory contents, even if auto indexing is turned off and there is a default web page configured, via a GET request containing a double slash (//).Show less
CVE-2002-0874 1Redhat 1Interchange Apr 16, 2026 Sep 5, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files.