This page lists publicly disclosed CVE vulnerabilities affecting summit_computer_networks lil_http_server (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2002-1009 | Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) "Name" or (2) "E-mail" parameters. | [email protected] | 7.5 | 3.06% | 2002-10-04 | 2026-04-16 |
| CVE-2002-1008 | Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlcount.cgi that contains the script, which is not filtered when the REPORT capability prints the original request. | [email protected] | 7.5 | 3.83% | 2002-10-04 | 2026-04-16 |
| CVE-2002-0304 | Lil HTTP Server 2.1 allows remote attackers to read password-protected files via a /./ in the HTTP request. | [email protected] | 5.0 | 0.95% | 2002-05-31 | 2026-04-16 |