VYPR

Localserver

by Localserver

CVEs (5)

  • CVE-2018-18756HigNov 16, 2018
    risk 0.49cvss 7.5epss 0.02

    Local Server 1.0.9 has a Buffer Overflow via crafted data on Port 4008.

  • CVE-2024-10289MedOct 23, 2024
    risk 0.40cvss 6.1epss 0.00

    Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName.

  • CVE-2024-10288MedOct 23, 2024
    risk 0.40cvss 6.1epss 0.00

    Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/SubscribeToList, parameter ListName.

  • CVE-2024-10287MedOct 23, 2024
    risk 0.40cvss 6.1epss 0.00

    Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ForgotPassword, parameter ListName.

  • CVE-2024-10286MedOct 23, 2024
    risk 0.40cvss 6.1epss 0.00

    Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /testmail/index.php, parameter to.