Summary
The remote host is running PHProxy, a web HTTP proxy written in PHP.
There is a bug in the remote version software which makes it vulnerable to HTML and JavaScript injection.
An attacker may use this bug to preform web cache poisoning, xss attack, etc.
Solution
Upgrade to the newest version of this software
Severity
Classification
-
CVE CVE-2004-2604 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Adobe ColdFusion Multiple Vulnerabilities-03 May-2014
- 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
- Ampache Reflected Cross Site Scripting Vulnerability
- Apache Continuum Cross Site Scripting Vulnerability
- AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities