1201 matches found
CVE-2017-16140
The CVE-2017-16140 entry concerns lab6.brit95, a file server vulnerable to a directory traversal flaw. The root cause is improper handling of path traversal, allowing an attacker to access the filesystem by including ../ in the URL. Public records (GHSA, OSV, CNVD, CNVD-2018-14250, Veracode, NVD)...
CVE-2017-16185
CVE-2017-16185 affects the static file server uekw1511server . A directory traversal vulnerability allows an attacker to access the filesystem by placing traversal sequences (e.g., ../) in the URL, potentially disclosing private files. Multiple connected sources confirm the issue and describe exp...
CVE-2017-16193
CVE-2017-16193 affects the static file server mfrs . The vulnerability is a directory traversal flaw where a URL containing "../" (and variants) allows access to files outside the intended root. Public documents confirm the root cause is improper resolution of relative file paths, enabling potent...
CVE-2017-16178
intsol-package is a file server. intsol-package is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16159
caolilinode is a simple file server. caolilinode is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16158
dcserver is a static file server. dcserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16167
yyooopack is a simple file server. yyooopack is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16197
qinserve is a static file server vulnerable to a directory traversal issue. An attacker can access the filesystem by supplying relative paths (e.g., ../../… in the URL). The issue is documented across multiple sources (NVD, GHSA advisory, Veracode, OSV, CNVD, etc.). Impact described as potential ...
CVE-2017-16181
wintiwebdev is a static file server. wintiwebdev is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16190
Details show that the static file server dcdcdcdcdc is affected by a directory traversal vulnerability. An attacker can access the filesystem by placing relative path sequences (e.g., "../" or similar encodings) in the request URL, potentially escaping the intended document root. This is document...
CVE-2017-16148
The CVE-2017-16148 entry concerns the static file server serve46 . The connected advisories document a directory traversal vulnerability where a URL containing relative path segments (for example, ../../) can cause the server to disclose files outside the intended directory. The vulnerability aff...
CVE-2017-16167
Affected software: yyooopack (a simple file server). Vulnerability: directory traversal via crafted URL segments like ../, allowing access to filesystem outside the intended directory. Root cause/details (as stated): the vulnerability resides in how relative paths are resolved, enabling traversal...
CVE-2017-16214
peiserver is a static file server. peiserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16175
ewgaddis.lab6 is a file server. ewgaddis.lab6 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16185
uekw1511server is a static file server. uekw1511server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16163
dylmomo is a simple file server. dylmomo is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16212
Summary: CVE-2017-16212 affects the static file server named ltt , with a directory traversal vulnerability that can be triggered by including relative paths (e.g., "../../"). Public details in connected advisories (GHSA-5JG5-W395-9684, Veracode, CNVD, etc.) describe that affected versions of ltt...
CVE-2017-16181
CVE-2017-16181 affects the static file server wintiwebdev. The vulnerability is a directory traversal flaw that lets an attacker access the filesystem by requesting URLs containing ../ sequences. This is confirmed across multiple sources (NVD entry for CVE-2017-16181 and related advisories). Impa...
CVE-2017-16148
serve46 is a static file server. serve46 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16182
CVE-2017-16182 affects the static file server named serverxxx, where a directory traversal vulnerability exists due to improper handling of relative file paths in URLs (e.g., ..). The issue, described across multiple sources (GitHub advisory GHSA-wh33-4P32-G7VH, Veracode, CNVD, NVD, CVE list, OSV...