Every CVE whose affected-product data names Hfs Http File Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2008-0405 — CVSS 10.0 (critical): Multiple directory traversal vulnerabilities in HTTP File Server (HFS) before 2.2c, when account names are used as log filenames, allow…
CVE-2008-0408 — CVSS 6.4 (medium): HTTP File Server (HFS) before 2.2c allows remote attackers to append arbitrary text to the log file by using the base64 representation of…
CVE-2008-0406 — CVSS 5.0 (medium): HTTP File Server (HFS) before 2.2c, when account names are used as log filenames, allows remote attackers to cause a denial of service…
CVE-2008-0407 — CVSS 5.0 (medium): HTTP File Server (HFS) before 2.2c tags HTTP request log entries with the username sent during HTTP Basic Authentication, regardless of…
CVE-2008-0410 — CVSS 5.0 (medium): HTTP File Server (HFS) before 2.2c allows remote attackers to obtain configuration and usage details by using an id element such as…
CVE-2008-0409 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in HTTP File Server (HFS) before 2.2c allows remote attackers to inject arbitrary web script or…