Summary
The remote host is running PHProxy, a web HTTP proxy written in PHP.
There is a bug in the remote version software which makes it vulnerable to HTML and JavaScript injection.
An attacker may use this bug to preform web cache poisoning, xss attack, etc.
Solution
Upgrade to the newest version of this software
Severity
Classification
-
CVE CVE-2004-2604 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
- Abtp Portal Project 'ABTPV_BLOQUE_CENT' Parameter Local and Remote File Include Vulnerabilities
- AdaptCMS 'init.php' Remote File Include Vulnerability
- @Mail WebMail Email Body HTML Injection Vulnerability
- Apache Web Server Configuration File Environment Variable Local Buffer Overflow Vulnerability