Vulnerabilities (CVE)

Filtered by vendor Key Focus Subscribe
Filtered by product Kf Web Server
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-3396 1 Key Focus 1 Kf Web Server 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in index.wkf in KeyFocus (KF) web server 3.1.0 allows remote attackers to inject arbitrary web script or HTML via the opsubmenu parameter.
CVE-2002-2403 1 Key Focus 1 Kf Web Server 2024-11-20 5.0 MEDIUM N/A
Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences.
CVE-2002-1032 1 Key Focus 1 Kf Web Server 2024-11-20 7.5 HIGH N/A
Buffer overflow in KeyFocus (KF) web server 1.0.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed HTTP header.
CVE-2002-1031 1 Key Focus 1 Kf Web Server 2024-11-20 5.0 MEDIUM N/A
KeyFocus (KF) web server 1.0.2 allows remote attackers to list directories and read restricted files via an HTTP request containing a %00 (null) character.