EUVD-2018-0789

Malware in sbrugna...

Directory Traversal in hostr

Affected versions of hostr are vulnerable to directory traversal which allows attackers to read files outside the current directory by sending ../ in the url path for GET requests. Recommendation Upgrade to version 2.3.6 or later...

GHSA-XQQR-P362-6RMC Directory Traversal in hostr

Affected versions of hostr are vulnerable to directory traversal which allows attackers to read files outside the current directory by sending ../ in the url path for GET requests. Recommendation Upgrade to version 2.3.6 or later...

hostr path traversal vulnerability

hostr is a simple web server which is mainly used to test HTML code. A path traversal vulnerability exists in hostr 2.3.5 and earlier versions. An attacker can send a GET request for a URL path with the sequence '. /' sequence in a GET request can be used to read a file outside the current path...

CVE-2017-16029

hostr is a simple web server that serves up the contents of the current directory. There is a directory traversal vulnerability in hostr 2.3.5 and earlier that allows an attacker to read files outside the current directory by sending ../ in the url path for GET requests...

CVE-2017-16029

hostr is a simple web server that serves up the contents of the current directory. There is a directory traversal vulnerability in hostr 2.3.5 and earlier that allows an attacker to read files outside the current directory by sending ../ in the url path for GET requests...

Directory traversal

hostr is a simple web server that serves up the contents of the current directory. There is a directory traversal vulnerability in hostr 2.3.5 and earlier that allows an attacker to read files outside the current directory by sending ../ in the url path for GET requests...

CVE-2017-16029

The CVE-2017-16029 issue affects hostr (a simple web server). A directory traversal vulnerability exists in hostr 2.3.5 and earlier that lets an attacker read files outside the current directory by sending ../ in the URL path for GET requests. Affected versions are 2.3.5 and earlier; upgrade to 2...

CVE-2017-16029

hostr is a simple web server that serves up the contents of the current directory. There is a directory traversal vulnerability in hostr 2.3.5 and earlier that allows an attacker to read files outside the current directory by sending ../ in the url path for GET requests...

Directory Traversal

Overview hostr is a simple web server for the current working directory. Used for hello world style web sites hosting only files in current directory structure. Watches files and integrates with LiveReload. Affected versions of the package do not filter http GET requests in javascript code,...

Directory Traversal

hostr is vulnerable to directory traversal attacks. These attacks can be conducted by sending a request using a small program with ../ in the input. The server will then serve up files outside of the intended directory. Note: These attacks cannot be conducted using cURL...

Directory Traversal

Overview Affected versions of hostr are vulnerable to directory traversal which allows attackers to read files outside the current directory by sending ../ in the url path for GET requests. Recommendation Upgrade to version 2.3.6 or later. References - Issue 8 - GitHub Advisory...