Unrated severityNVD Advisory· Published Jun 15, 2010· Updated Jun 16, 2026
CVE-2010-2267
CVE-2010-2267
Description
Multiple cross-site scripting (XSS) vulnerabilities in Accoria Web Server (aka Rock Web Server) 1.4.7 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to the getenv sample program, (2) the desc parameter to loadstatic.cgi, (3) the name parameter to httpdcfg.cgi, or (4) the dns parameter to servercfg.cgi.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:accoria:rock_web_server:1.4.7:*:*:*:*:*:*:*
- Range: =1.4.7
Patches
Vulnerability mechanics
References
2- www.ioactive.com/pdfs/AccoriaWebServer.pdfnvdExploit
- www.kb.cert.org/vuls/id/245081nvdUS Government Resource
News mentions
0No linked articles in our index yet.