Lucene search
K

7 matches found

Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.263 views

Embedthis GoAhead Embedded Web Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Embedthis GoAhead Embedded Web Server Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability in the...

7.5CVSS7AI score0.28417EPSS
Exploits4
Circl
Circl
added 2018/05/29 3:50 p.m.14 views

CVE-2014-9707

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/goaheadtraversal.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:34+00:00| seen|...

7.5CVSS5.5AI score0.28417EPSS
Exploits4References1
myhack58
myhack58
added 2016/09/21 12:0 a.m.19 views

From the CVE-2 0 1 4-9 7 0 7 see the unlink exploit-vulnerability warning-the black bar safety net

Foreword Recently been looking at springs, a brother of the vulnerability war: software vulnerability analysis Essentials, I contact binary the time is not long, but I think this book is particularly good, the main reason is this book in the vulnerability covers the vast majority of Common...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2015/05/12 12:0 a.m.89 views

Advisory: CVE-2014-9707: GoAhead Web Server 3.0.0 - 3.4.1

Affected software: GoAhead Web Server Affected versions: 3.0.0 - 3.4.1 3.x.x series before 3.4.2 CVE ID: CVE-2014-9707 Description: The server incorrectly normalizes HTTP request URIs that contain path segments that start with a "." but are not entirely equal to "." or ".." eg. ".x". By sending a...

7.5CVSS7.2AI score0.28417EPSS
Exploits4
OpenVAS
OpenVAS
added 2015/04/06 12:0 a.m.31 views

Embedthis GoAhead Multiple Vulnerabilities (Apr 2015) - Active Check

Embedthis GoAhead is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:embedthis:goahead";...

7.5CVSS6.5AI score0.28417EPSS
Exploits4References4
CVE
CVE
added 2015/03/31 2:0 p.m.72 views

CVE-2014-9707

CVE-2014-9707 affects EmbedThis GoAhead Web Server 3.0.0–3.4.1. The vulnerability is in websNormalizeUriPath, which mishandles URI segments starting with a dot, enabling remote attackers to perform directory traversal and trigger a heap-based buffer overflow, potentially leading to crash or arbit...

7.5CVSS8.4AI score0.28417EPSS
Exploits4References6Affected Software1
Packet Storm
Packet Storm
added 2015/03/28 12:0 a.m.52 views

GoAhead 3.4.1 Heap Overflow / Traversal

Affected software: GoAhead Web Server Affected versions: 3.0.0 - 3.4.1 3.x.x series before 3.4.2 CVE ID: CVE-2014-9707 Description: The server incorrectly normalizes HTTP request URIs that contain path segments that start with a "." but are not entirely equal to "." or ".." eg. ".x". By sending a...

7.5CVSS0.1AI score0.28417EPSS
Exploits4
Rows per page
Query Builder