Unrated severityNVD Advisory· Published Apr 11, 2006· Updated Jun 16, 2026
CVE-2006-1681
CVE-2006-1681
Description
Cross-site scripting (XSS) vulnerability in Cherokee HTTPD 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a malformed request that generates an HTTP 400 error, which is not properly handled when the error message is generated.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14cpe:2.3:a:cherokee:cherokee_httpd:0.1:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:cherokee:cherokee_httpd:0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.4.17:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.4.7:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.4.8:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.4.9:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.5:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.