Vulnerabilities > Mongrel > Mongrel > 1.1.1

DATE CVE VULNERABILITY TITLE RISK
2008-01-03 CVE-2007-6612 Path Traversal vulnerability in Mongrel 1.0.4/1.1.1/1.1.2
Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb) in Mongrel 1.0.4 and 1.1.x before 1.1.3 allows remote attackers to read arbitrary files via an HTTP request containing double-encoded sequences (".%252e").
network
low complexity
mongrel CWE-22
6.4
6.4