HFS (http://www.rejetto.com/hfs) is "a very popular open source HTTP server designed for easily sharing files. According to information on the official website, the HTTP File Server software has been downloaded about 2 million times". Multiple vulnerabilities have been discovered in the HFS server, these allow remote attacker to cause the product to log entries incorrectly, access arbitrary files and directories and cause a cross site scripting vulnerability.

http://www.securiteam.com/windowsntfocus/5WP060UNFO.html