Vulnerabilities > Sergey Lyubka

DATE CVE VULNERABILITY TITLE RISK
2009-12-31 CVE-2009-4530 Information Exposure vulnerability in Sergey Lyubka Mongoose 2.4
Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI.
network
low complexity
sergey-lyubka CWE-200
5.0
2009-04-21 CVE-2009-1354 Path Traversal vulnerability in Sergey Lyubka Mongoose 2.4
Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a ..
network
low complexity
sergey-lyubka CWE-22
4.0
2007-12-13 CVE-2007-6326 Improper Input Validation vulnerability in Sergey Lyubka Simple Httpd 1.3
Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI.
network
low complexity
sergey-lyubka CWE-20
5.0
2007-06-26 CVE-2007-3407 Information Disclosure vulnerability in Sergey Lyubka Simple Httpd 1.38
Sergey Lyubka Simple HTTPD (shttpd) 1.38 allows remote attackers to obtain sensitive information (script source code) via a URL with a trailing encoded space (%20).
network
low complexity
sergey-lyubka
5.0
2006-10-10 CVE-2006-5216 Remote Buffer Overflow vulnerability in Sergey Lyubka Simple Httpd 1.34
Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI.
network
low complexity
sergey-lyubka
7.5