3 matches found
CVE-2009-4535
Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending a / slash character to the URI...
Mongoose Web Server <= 2.8 Slash Character Remote File Disclosure Vulnerability
Mongoose Web Server is prone to a remote file-disclosure vulnerability because it fails to properly sanitize user-supplied input. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2009-4535
The CVE affects the Mongoose Web Server (Cesanta Mongoose) ≤ 2.8.0. Affected component: the web server’s handling of URL paths; root cause is inadequate input sanitization, allowing a remote attacker to trigger a trailing slash request that discloses the server’s files (source code disclosure). I...