Openserver

openserver

Vendor: Xinuos • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-25495 1Xinuos 1Openserver Nov 21, 2024 Dec 18, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 A reflected Cross-site scripting (XSS) vulnerability in Xinuo (formerly SCO) Openserver version 5 and 6 allows remote attackers to inject arbitrary web script or HTML tag via the parameter 'section'.
CVE-2020-25494 1Xinuos 1Openserver Nov 21, 2024 Dec 18, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to cgi-bin/printbook.
CVE-2004-0230 7Juniper McafeeMicrosoft+4 more 12Junos NetbsdNetwork Data Loss Prevention+9 more May 2, 2025 Aug 18, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet,...Show more TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.Show less