[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2008-0455":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":84,"duplicate_of":9,"upstream":85,"downstream":86,"duplicates":97,"related":98,"reserved_at":9,"published_at":99,"modified_at":100,"state":101,"summary":102,"references_raw":110,"kevs":229,"epss":230,"epss_history":233,"metrics":483,"affected":488},"CVE-2008-0455","Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web script or HTML by uploading a file with a name containing XSS sequences and a file extension, which leads to injection within a (1) \"406 Not Acceptable\" or (2) \"300 Multiple Choices\" HTTP response when the extension is omitted in a request for the file.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[45,54,59,64,69],{"_key":46,"name":47,"source":48,"url":49,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_26B0CE9E15BCDBE3","Exploit Reference (securitytracker.com)","reference","http://securitytracker.com/id?1019256","unknown",0.2,false,[],{"_key":55,"name":56,"source":48,"url":57,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":58,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_D8627C6138D2BE7E","Exploit Reference (securityreason.com)","http://securityreason.com/securityalert/3575",[],{"_key":60,"name":61,"source":48,"url":62,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":63,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_E64E346FCB8272D5","Exploit Reference (mindedsecurity.com)","http://www.mindedsecurity.com/MSA01150108.html",[],{"_key":65,"name":66,"source":48,"url":67,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":68,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_479F0B0CBD22592B","Exploit Reference (securityfocus.com)","http://www.securityfocus.com/bid/27409",[],{"_key":70,"name":71,"source":72,"url":73,"maturity":74,"reliability_score":75,"verified":76,"type":77,"platforms":78,"requires_auth":9,"exploitdb":80,"metasploit":9},"31052","Apache 2.2.6 mod_negotiation - HTML Injection / HTTP Response Splitting","exploit-database","https://www.exploit-db.com/exploits/31052","weaponized",0.8,true,"remote",[79],"linux",{"verified":76,"type":77,"platform":79,"file":81,"codes":82},"exploits/linux/remote/31052.java",[7,83],"OSVDB-41019",[],[],[87,89,91,93,95],{"_key":88},"DEBIAN-CVE-2008-0455",{"_key":90},"RHSA-2012:1591",{"_key":92},"RHSA-2012:1592",{"_key":94},"RHSA-2013:0130",{"_key":96},"RHSA-2013:0512",[],[],"2008-01-25T00:00:00.000Z","2024-08-07T07:46:54.547Z","Modified",{"cisa_kev":52,"cisa_ransomware":52,"cisa_vendor":9,"epss_severity":103,"epss_score":104,"severity":105,"severity_score":106,"severity_version":107,"severity_source":108,"severity_vector":109,"severity_status":101},"critical",0.52581,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:N/I:P/A:N",[111,120,126,132,136,141,147,151,155,159,163,167,171,176,181,185,189,193,197,201,205,209,213,217,221,225],{"url":112,"sources":113,"tags":115},"http://www.securityfocus.com/archive/1/486847/100/0/threaded",[114,108],"cve.org",[116,117,118,119],"Mailing List","X Refsource BUGTRAQ","Third Party Advisory","VDB Entry",{"url":121,"sources":122,"tags":123},"http://security.gentoo.org/glsa/glsa-200803-19.xml",[114,108],[124,125,118],"Vendor Advisory","X Refsource GENTOO",{"url":49,"sources":127,"tags":128},[114,108],[119,129,130,131,118],"X Refsource SECTRACK","Broken Link","Exploit",{"url":57,"sources":133,"tags":134},[114,108],[118,135,131],"X Refsource SREASON",{"url":137,"sources":138,"tags":139},"http://rhn.redhat.com/errata/RHSA-2012-1594.html",[114,108],[124,140,118],"X Refsource REDHAT",{"url":142,"sources":143,"tags":144},"http://secunia.com/advisories/51607",[114,108],[118,145,146],"X Refsource SECUNIA","Not Applicable",{"url":62,"sources":148,"tags":149},[114,108],[150,131],"X Refsource MISC",{"url":152,"sources":153,"tags":154},"http://rhn.redhat.com/errata/RHSA-2012-1592.html",[114,108],[124,140,118],{"url":156,"sources":157,"tags":158},"http://secunia.com/advisories/29348",[114,108],[118,145,146],{"url":160,"sources":161,"tags":162},"http://rhn.redhat.com/errata/RHSA-2013-0130.html",[114,108],[124,140,118],{"url":164,"sources":165,"tags":166},"http://rhn.redhat.com/errata/RHSA-2012-1591.html",[114,108],[124,140,118],{"url":67,"sources":168,"tags":169},[114,108],[119,170,131,118],"X Refsource BID",{"url":172,"sources":173,"tags":174},"https://exchange.xforce.ibmcloud.com/vulnerabilities/39867",[114,108],[119,175,118],"X Refsource XF",{"url":177,"sources":178,"tags":179},"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],"X Refsource MLIST",{"url":182,"sources":183,"tags":184},"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":186,"sources":187,"tags":188},"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":190,"sources":191,"tags":192},"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":194,"sources":195,"tags":196},"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":198,"sources":199,"tags":200},"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":202,"sources":203,"tags":204},"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":206,"sources":207,"tags":208},"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":210,"sources":211,"tags":212},"https://lists.apache.org/thread.html/r9b4b963760a3cb5a4a70c902f325c6c0337fe51d5b8570416f8f8729%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":214,"sources":215,"tags":216},"https://lists.apache.org/thread.html/r05b5357d1f6bd106f41541ee7d87aafe3f5ea4dc3e9bde5ce09baff8%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":218,"sources":219,"tags":220},"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":222,"sources":223,"tags":224},"https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],{"url":226,"sources":227,"tags":228},"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E",[114,108],[116,180],[],{"date":231,"score":104,"percentile":232},"2026-06-04",0.97991,[234,238,241,244,248,251,253,255,258,261,264,267,269,271,274,277,280,283,286,289,291,293,296,299,302,304,307,310,314,317,319,321,324,327,330,333,336,339,342,345,348,350,353,356,359,362,364,367,369,372,374,377,380,382,386,389,392,394,397,400,403,406,409,412,414,416,419,421,423,425,427,429,431,433,436,439,442,445,448,451,454,457,460,463,466,468,471,474,477,480],{"date":235,"score":236,"percentile":237},"2025-11-04",0.2276,0.95623,{"date":239,"score":236,"percentile":240},"2025-11-05",0.95622,{"date":242,"score":236,"percentile":243},"2025-11-06",0.95624,{"date":245,"score":246,"percentile":247},"2025-11-07",0.18089,0.94894,{"date":249,"score":246,"percentile":250},"2025-11-08",0.94891,{"date":252,"score":246,"percentile":250},"2025-11-09",{"date":254,"score":246,"percentile":250},"2025-11-10",{"date":256,"score":246,"percentile":257},"2025-11-11",0.94893,{"date":259,"score":246,"percentile":260},"2025-11-12",0.94896,{"date":262,"score":246,"percentile":263},"2025-11-13",0.94895,{"date":265,"score":246,"percentile":266},"2025-11-14",0.94898,{"date":268,"score":246,"percentile":257},"2025-11-15",{"date":270,"score":246,"percentile":260},"2025-11-16",{"date":272,"score":246,"percentile":273},"2025-11-17",0.94899,{"date":275,"score":246,"percentile":276},"2025-11-18",0.94684,{"date":278,"score":246,"percentile":279},"2025-11-19",0.94687,{"date":281,"score":246,"percentile":282},"2025-11-20",0.94693,{"date":284,"score":246,"percentile":285},"2025-11-21",0.94904,{"date":287,"score":246,"percentile":288},"2025-11-22",0.94903,{"date":290,"score":246,"percentile":288},"2025-11-23",{"date":292,"score":246,"percentile":288},"2025-11-24",{"date":294,"score":246,"percentile":295},"2025-11-25",0.94905,{"date":297,"score":246,"percentile":298},"2025-11-26",0.94907,{"date":300,"score":246,"percentile":301},"2025-11-27",0.9491,{"date":303,"score":246,"percentile":298},"2025-11-28",{"date":305,"score":246,"percentile":306},"2025-11-29",0.94911,{"date":308,"score":246,"percentile":309},"2025-11-30",0.94909,{"date":311,"score":312,"percentile":313},"2025-12-01",0.20043,0.95292,{"date":315,"score":312,"percentile":316},"2025-12-02",0.95291,{"date":318,"score":312,"percentile":313},"2025-12-03",{"date":320,"score":246,"percentile":301},"2025-12-04",{"date":322,"score":246,"percentile":323},"2025-12-05",0.94914,{"date":325,"score":246,"percentile":326},"2025-12-06",0.94913,{"date":328,"score":246,"percentile":329},"2025-12-07",0.9492,{"date":331,"score":246,"percentile":332},"2025-12-08",0.94919,{"date":334,"score":246,"percentile":335},"2025-12-09",0.94923,{"date":337,"score":236,"percentile":338},"2025-12-10",0.95657,{"date":340,"score":236,"percentile":341},"2025-12-11",0.9566,{"date":343,"score":236,"percentile":344},"2025-12-12",0.95663,{"date":346,"score":236,"percentile":347},"2025-12-13",0.95664,{"date":349,"score":236,"percentile":347},"2025-12-14",{"date":351,"score":236,"percentile":352},"2025-12-15",0.95668,{"date":354,"score":236,"percentile":355},"2025-12-16",0.95671,{"date":357,"score":236,"percentile":358},"2025-12-17",0.95673,{"date":360,"score":236,"percentile":361},"2025-12-18",0.95675,{"date":363,"score":236,"percentile":361},"2025-12-19",{"date":365,"score":236,"percentile":366},"2025-12-20",0.95677,{"date":368,"score":236,"percentile":366},"2025-12-21",{"date":370,"score":236,"percentile":371},"2025-12-22",0.95676,{"date":373,"score":236,"percentile":371},"2025-12-23",{"date":375,"score":236,"percentile":376},"2025-12-24",0.9568,{"date":378,"score":236,"percentile":379},"2025-12-25",0.95684,{"date":381,"score":236,"percentile":379},"2025-12-26",{"date":383,"score":384,"percentile":385},"2025-12-27",0.2069,0.95437,{"date":387,"score":236,"percentile":388},"2025-12-28",0.95682,{"date":390,"score":236,"percentile":391},"2025-12-29",0.95683,{"date":393,"score":236,"percentile":391},"2025-12-30",{"date":395,"score":236,"percentile":396},"2025-12-31",0.95687,{"date":398,"score":312,"percentile":399},"2026-01-01",0.95331,{"date":401,"score":312,"percentile":402},"2026-01-02",0.95327,{"date":404,"score":312,"percentile":405},"2026-01-03",0.95323,{"date":407,"score":236,"percentile":408},"2026-01-04",0.95678,{"date":410,"score":236,"percentile":411},"2026-01-05",0.95674,{"date":413,"score":236,"percentile":366},"2026-01-06",{"date":415,"score":236,"percentile":366},"2026-01-07",{"date":417,"score":236,"percentile":418},"2026-01-08",0.95679,{"date":420,"score":236,"percentile":376},"2026-01-09",{"date":422,"score":236,"percentile":388},"2026-01-10",{"date":424,"score":236,"percentile":418},"2026-01-11",{"date":426,"score":236,"percentile":418},"2026-01-12",{"date":428,"score":236,"percentile":408},"2026-01-13",{"date":430,"score":236,"percentile":379},"2026-01-14",{"date":432,"score":236,"percentile":379},"2026-01-15",{"date":434,"score":236,"percentile":435},"2026-01-16",0.95685,{"date":437,"score":236,"percentile":438},"2026-01-17",0.95686,{"date":440,"score":236,"percentile":441},"2026-01-18",0.95691,{"date":443,"score":236,"percentile":444},"2026-01-19",0.95688,{"date":446,"score":236,"percentile":447},"2026-01-20",0.95689,{"date":449,"score":236,"percentile":450},"2026-01-21",0.95692,{"date":452,"score":236,"percentile":453},"2026-01-22",0.95695,{"date":455,"score":236,"percentile":456},"2026-01-23",0.95699,{"date":458,"score":236,"percentile":459},"2026-01-24",0.95702,{"date":461,"score":236,"percentile":462},"2026-01-25",0.95705,{"date":464,"score":236,"percentile":465},"2026-01-26",0.95706,{"date":467,"score":236,"percentile":465},"2026-01-27",{"date":469,"score":236,"percentile":470},"2026-01-28",0.95708,{"date":472,"score":236,"percentile":473},"2026-01-29",0.95711,{"date":475,"score":236,"percentile":476},"2026-01-30",0.95713,{"date":478,"score":236,"percentile":479},"2026-01-31",0.95714,{"date":481,"score":312,"percentile":482},"2026-02-01",0.95351,[484],{"source":108,"cvss_v2_0":485,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":106,"baseSeverity":9,"vectorString":109,"impactScore":486,"exploitabilityScore":487},2.9,8.6,[489,503,511,516,521],{"ecosystem":9,"name":490,"vendor":9,"product":490,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":491},"HTTP Server",[492,499],{"version":493,"is_range":76,"range_type":494,"version_start":495,"version_start_type":496,"version_end":497,"version_end_type":498,"fixed_in":9},"gte2.2.0_lt2.2.23","cpe","2.2.0","including","2.2.23","excluding",{"version":500,"is_range":76,"range_type":494,"version_start":501,"version_start_type":496,"version_end":502,"version_end_type":498,"fixed_in":9},"gte2.4.1_lt2.4.3","2.4.1","2.4.3",{"ecosystem":9,"name":504,"vendor":505,"product":506,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":508},"enterprise linux desktop","redhat","enterprise_linux_desktop","o",[509],{"version":510,"is_range":52,"range_type":494,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0",{"ecosystem":9,"name":512,"vendor":505,"product":513,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":514},"enterprise linux server","enterprise_linux_server",[515],{"version":510,"is_range":52,"range_type":494,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":517,"vendor":505,"product":518,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":519},"enterprise linux workstation","enterprise_linux_workstation",[520],{"version":510,"is_range":52,"range_type":494,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":522,"vendor":505,"product":523,"cpe_part":524,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":525},"jboss enterprise application platform","jboss_enterprise_application_platform","a",[526,528],{"version":527,"is_range":52,"range_type":494,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.0",{"version":529,"is_range":52,"range_type":494,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.4.0"]