3 matches found
Yaws Web Server Directory Traversal
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Yaws Web Server Directory Traversal", 'Description' = %q This module exploits a directory traversal bug in Yaws v1.9.1 or less. The module can on...
CVE-2011-4350
Affected software: Yaws web server (1.91; and v1.9.1 or less per sources). Issue: directory traversal in how certain URLs are processed, enabling a remote authenticated user to obtain content of arbitrary local files via specially crafted URL requests. Concretely documented in CVE-2011-4350 acros...
CVE-2011-4350
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/yawstraversal.rb 2024-02-28 07:36:57+00:00| seen| https://t.me/ctinow/195157 2025-02-06 03:13:40+00:00| seen|...