Vulnerabilities > M Server Project

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-01	CVE-2018-16485	Path Traversal vulnerability in M-Server Project M-Server Path Traversal vulnerability in module m-server <1.4.1 allows malicious user to access unauthorized content of any file in the directory tree e.g. network low complexity m-server-project CWE-22	4.0
2019-02-01	CVE-2018-16484	Cross-site Scripting vulnerability in M-Server Project M-Server A XSS vulnerability was found in module m-server <1.4.2 that allows malicious Javascript code or HTML to be executed, due to the lack of escaping for special characters in folder names. network m-server-project CWE-79	3.5

Vulnerabilities > M Server Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"M Server Project"}]}