8 matches found
EUVD-2020-0631
Malware in sbrugna...
GHSA-M273-WWFV-H6JP Directory Traversal in fancy-server
Versions 0.1.4 and earlier of fancy-server are vulnerable to a directory traversal attack. Standard attack vectors such as ../ will allow an attacker to read files outside of the served directory. Recommendation Upgrade to version 0.1.4 or greater...
Directory Traversal in fancy-server
Versions 0.1.4 and earlier of fancy-server are vulnerable to a directory traversal attack. Standard attack vectors such as ../ will allow an attacker to read files outside of the served directory. Recommendation Upgrade to version 0.1.4 or greater...
fancy-server path traversal vulnerability
fancy-server is a static file server. A path traversal vulnerability exists in versions of fancy-server prior to 0.1.4. An attacker can exploit this vulnerability by submitting input e.g. '. /' to read files from other directories...
CVE-2014-10066
Versions less than 0.1.4 of the static file server module fancy-server are vulnerable to directory traversal. An attacker can provide input such as ../ to read files outside of the served directory...
CVE-2014-10066
Versions less than 0.1.4 of the static file server module fancy-server are vulnerable to directory traversal. An attacker can provide input such as ../ to read files outside of the served directory...
CVE-2014-10066
CVE-2014-10066 affects the fancy-server static-file server module. Versions prior to 0.1.4 are vulnerable to directory traversal (input like ../ can read files outside the served directory). This is documented across multiple sources (NVD entry, GHSA advisory, and related OSS advisories), stating...
Directory Traversal
Overview Versions 0.1.4 and earlier of fancy-server are vulnerable to a directory traversal attack. Standard attack vectors such as ../ will allow an attacker to read files outside of the served directory. Recommendation Upgrade to version 0.1.4 or greater. References -...