29 matches found
EUVD-2018-0253
Malware in sbrugna...
EUVD-2020-0543
Malware in sbrugna...
[SECURITY] Fedora 36 Update: golang-github-redteampentesting-monsoon-0.6.0-7.fc36
Fast HTTP enumerator...
Fedora: Security Advisory for golang-github-redteampentesting-monsoon (FEDORA-2022-3969b64d4b)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for golang-github-redteampentesting-monsoon (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 36 Update: golang-github-redteampentesting-monsoon-0.6.0-5.fc36
Fast HTTP enumerator...
Fedora: Security Advisory for golang-github-redteampentesting-monsoon (FEDORA-2022-5cbd6de569)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 34 Update: golang-github-redteampentesting-monsoon-0.6.0-5.fc34
Fast HTTP enumerator...
[SECURITY] Fedora 35 Update: golang-github-redteampentesting-monsoon-0.6.0-5.fc35
Fast HTTP enumerator...
chatc-cli (>=0.1.7 <=0.1.9), fast-http-cli (>=0.0.1 <=0.0.8) potentially affected by CVE-2020-7687 via fast-http (>=0.1.2 <=0.1.3)
fast-http NPM version =0.1.2, =0.1.7, =0.0.1, =0.0.8 Source cves: CVE-2020-7687 Source advisory: OSV:GHSA-7PHR-5M9X-RW9Q...
GHSA-7PHR-5M9X-RW9Q Directory traversal in fast-http
This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js...
Directory traversal in fast-http
This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js...
Directory Traversal
fast-http is vulnerable to directory traversal. Lack of path sanitization in the fs.readfile function in index.js allows an attacker to access arbitrary files outside of the web root...
CVE-2020-7687
This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js...
CVE-2020-7687 Directory Traversal
This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js...
CVE-2020-7687
CVE-2020-7687 affects all versions of the npm package fast-http . The root cause is lack of path sanitization in the path provided to fs.readFile in index.js, enabling a directory traversal vulnerability. Multiple sources (NVD/NVD entry, GitHub advisory GHSA-7PHR-5M9X-RW9Q, OSV, CVE records, Vera...
chatc-cli (>=0.1.7 <=0.1.9), fast-http-cli (>=0.0.1 <=0.0.8) potentially affected by CVE-2020-7687 via fast-http (>=0.1.2 <=0.1.3)
fast-http NPM version =0.1.2, =0.1.7, =0.0.1, =0.0.8 Source cves: CVE-2020-7687 Source advisory: SNYK:JS-FASTHTTP-572892...
Directory Traversal
Overview fast-http is a library that allows you to create a tiny web server. Affected versions of this package are vulnerable to Directory Traversal. There is no path sanitization in the path provided at fs.readFile in index.js. PoC by JHU System Security Lab 1. Start the server var Server =...
Directory Traversal in fast-http-cli
fast-http-cli is the command line interface for fast-http, a simple web server. fast-http-cli is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:...
GHSA-9FRQ-F867-HGQC Directory Traversal in fast-http-cli
fast-http-cli is the command line interface for fast-http, a simple web server. fast-http-cli is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host:...