Description

Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL.

Remediation

References

CVE-2007-6421

Related Vulnerabilities

Django Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33571)

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2472)

Dolibarr Improper Authentication Vulnerability (CVE-2020-7995)

PHP Other Vulnerability (CVE-2006-1494)

Jetty Other Vulnerability (CVE-2020-27216)

Severity

Low

Classification

CVE-2007-6421 CWE-707

Tags

Missing Update Known Vulnerabilities