Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers to inject arbitrary web script or HTML via a crafted URI that triggers a UTF-7 error page.
From 神龙GPT (AIGC)
在苹果公司Mac OS X 10.5.8和10.6.1之前版本的 WEBrick HTTP服务器中,存在跨站脚本(XSS)漏洞,这允许远程攻击者通过创建的URI来注入任意的网页脚本或HTML。