EPSS
Percentile
37.8%
Versions of simple-server before 1.1.0 are vulnerable to stored cross-site scripting (XSS). This is exploitable if an attacker can control a filename on the server.
simple-server
Update to version 1.1.0 or later.