Security News

CVE-2017-16191

National Vulnerability Database - Wed, 06/06/2018 - 22:29
cypserver is a static file server. cypserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16192

National Vulnerability Database - Wed, 06/06/2018 - 22:29
getcityapi.yoehoehne is a web server. getcityapi.yoehoehne is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16193

National Vulnerability Database - Wed, 06/06/2018 - 22:29
mfrs is a static file server. mfrs is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16194

National Vulnerability Database - Wed, 06/06/2018 - 22:29
picard is a micro framework. picard is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16195

National Vulnerability Database - Wed, 06/06/2018 - 22:29
pytservce is a static file server. pytservce is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16196

National Vulnerability Database - Wed, 06/06/2018 - 22:29
quickserver is a simple static file server. quickserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16197

National Vulnerability Database - Wed, 06/06/2018 - 22:29
qinserve is a static file server. qinserve is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16198

National Vulnerability Database - Wed, 06/06/2018 - 22:29
ritp is a static web server. ritp is vulnerable to a directory traversal issue whereby an attacker can gain access to the file system by placing ../ in the URL. Access is restricted to files with a file extension, so files such as /etc/passwd are not accessible.
Categories: Security News

CVE-2017-16199

National Vulnerability Database - Wed, 06/06/2018 - 22:29
susu-sum is a static file server. susu-sum is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16200

National Vulnerability Database - Wed, 06/06/2018 - 22:29
uv-tj-demo is a static file server. uv-tj-demo is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16201

National Vulnerability Database - Wed, 06/06/2018 - 22:29
zjjserver is a static file server. zjjserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16202

National Vulnerability Database - Wed, 06/06/2018 - 22:29
The cofeescript module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
Categories: Security News

CVE-2017-16203

National Vulnerability Database - Wed, 06/06/2018 - 22:29
The coffe-script module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
Categories: Security News

CVE-2017-16204

National Vulnerability Database - Wed, 06/06/2018 - 22:29
The jquey module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
Categories: Security News

CVE-2017-16205

National Vulnerability Database - Wed, 06/06/2018 - 22:29
The coffescript module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
Categories: Security News

CVE-2017-16206

National Vulnerability Database - Wed, 06/06/2018 - 22:29
The cofee-script module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
Categories: Security News

CVE-2017-16207

National Vulnerability Database - Wed, 06/06/2018 - 22:29
discordi.js is a malicious module based on the discord.js library that exfiltrates login tokens to pastebin.
Categories: Security News

CVE-2017-16208

National Vulnerability Database - Wed, 06/06/2018 - 22:29
dmmcquay.lab6 is a REST server. dmmcquay.lab6 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

CVE-2017-16164

National Vulnerability Database - Wed, 06/06/2018 - 22:29
desafio is a simple web server. desafio is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url, but is limited to accessing only .html files.
Categories: Security News

CVE-2017-16165

National Vulnerability Database - Wed, 06/06/2018 - 22:29
calmquist.static-server is a static file server. calmquist.static-server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Categories: Security News

Pages