Redhat Interchange vulnerabilities

CVE-2020-12685 [MEDIUM] CWE-79 CVE-2020-12685: XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through 5.11.x allows remote attackers to steal credentials or data via browser JavaScript.

CVE-2003-1138 [MEDIUM] CVE-2003-1138: The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attacke The default configuration of Apache 2.0.40, as shipped with Red Hat Linux 9.0, allows remote attackers to list directory contents, even if auto indexing is turned off and there is a default web page configured, via a GET request containing a double slash (//).

CVE-2002-0874 [MEDIUM] CVE-2002-0874: Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows rem Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files.