Description
Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via a crafted string.
Remediation
References
Related Vulnerabilities
Nginx Out-of-bounds Write Vulnerability (CVE-2009-2629)
Jenkins Insufficient Session Expiration Vulnerability (CVE-2019-1003004)
WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.27)
Joomla Improper Authentication Vulnerability (CVE-2014-6632)
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6625)