Vulnerabilities (CVE)

Filtered by vendor Google Subscribe
Filtered by product Mod Pagespeed
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-4360 2 Apache, Google 2 Http Server, Mod Pagespeed 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the mod_pagespeed module 0.10.19.1 through 0.10.22.4 for the Apache HTTP Server allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2012-4001 2 Apache, Google 2 Http Server, Mod Pagespeed 2024-11-21 5.0 MEDIUM N/A
The mod_pagespeed module before 0.10.22.6 for the Apache HTTP Server does not properly verify its host name, which allows remote attackers to trigger HTTP requests to arbitrary hosts via unspecified vectors, as demonstrated by requests to intranet servers.