OkCupid/okws

Releases1

Frequency

Last Release about 14 years ago

Stars266

The OK Web Server

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2014-3148 ↗	Aug 31, 2015Monday, 31 August 2015, 18:59	—	4.3 MEDIUM
Cross-site scripting (XSS) vulnerability in libahttp/err.c in OkCupid OKWS (OK Web Server) allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to a non-existent page, which is not properly handled in a 404 error page.