Vulnerabilities > Sergey Lyubka
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-12-31 | CVE-2009-4530 | Information Exposure vulnerability in Sergey Lyubka Mongoose 2.4 Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI. | 5.0 |
2009-04-21 | CVE-2009-1354 | Path Traversal vulnerability in Sergey Lyubka Mongoose 2.4 Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a .. | 4.0 |
2007-12-13 | CVE-2007-6326 | Improper Input Validation vulnerability in Sergey Lyubka Simple Httpd 1.3 Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI. | 5.0 |
2007-06-26 | CVE-2007-3407 | Information Disclosure vulnerability in Sergey Lyubka Simple Httpd 1.38 Sergey Lyubka Simple HTTPD (shttpd) 1.38 allows remote attackers to obtain sensitive information (script source code) via a URL with a trailing encoded space (%20). | 5.0 |
2006-10-10 | CVE-2006-5216 | Remote Buffer Overflow vulnerability in Sergey Lyubka Simple Httpd 1.34 Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI. | 7.5 |