HttpFileServer version 2.3c suffers from multiple cross site scripting vulnerabilities.