Vulnerabilities
Vulnerable Software
Litespeedtech:  Security Vulnerabilities
Use-after-free vulnerability in Open Litespeed before 1.3.10.
CVSS Score
7.5
EPSS Score
0.011
Published
2017-09-20
Cross-site scripting (XSS) vulnerability in service/graph_html.php in the administrator panel in LiteSpeed Web Server 4.1.11 allows remote attackers to inject arbitrary web script or HTML via the gtitle parameter.
CVSS Score
4.3
EPSS Score
0.016
Published
2012-09-06
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
CVSS Score
5.0
EPSS Score
0.602
Published
2010-06-18
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.
CVSS Score
5.0
EPSS Score
0.104
Published
2004-11-23


Contact Us

Shodan ® - All rights reserved