CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-0616

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00641EPSS

Exploits1References3

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2021-23797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is. CVE-2021-23797 Note that Nessus relies on the presence o...

9.8CVSS7.3AI score0.00641EPSS

Exploits1References2

OSV•added 2022/01/05 3:2 p.m.•13 views

GHSA-HJ3M-V758-JWX5 Path Traversal in http-server-node

All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is...

7.5CVSS9.4AI score0.00641EPSS

Exploits1References3

Github Security Blog•added 2022/01/05 3:2 p.m.•19 views

Path Traversal in http-server-node

All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is...

9.8CVSS8.9AI score0.00641EPSS

Exploits1References3Affected Software1

Veracode•added 2021/12/20 1:56 p.m.•14 views

Directory Traversal

http-server-node is vulnerable to directory traversal. The vulnerability exists due to lack of sanitization of user inputs which allows an attacker to gain access to the files outside of the server scope...

9.8CVSS4.8AI score0.00641EPSS

Exploits1References2Affected Software1

OSV•added 2021/12/17 8:15 p.m.•0 views

UBUNTU-CVE-2021-23797

All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is...

9.8CVSS5.8AI score0.00641EPSS

Exploits1References3

Prion•added 2021/12/17 8:15 p.m.•9 views

Directory traversal

All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is...

7.5CVSS9.4AI score0.00641EPSS

Exploits1References1

CVE•added 2021/12/17 8:5 p.m.•43 views

CVE-2021-23797

CVE-2021-23797 affects the http-server-node package (all versions) with a Directory Traversal flaw exploitable via the --path-as-is option. The underlying issue is insufficient validation/handling of path parameters, enabling access to sensitive files and compromising confidentiality, integrity, ...

9.8CVSS8.6AI score0.00641EPSS

Exploits1References1Affected Software1

Debian CVE•added 2021/12/17 8:5 p.m.•18 views

CVE-2021-23797

Removed by vendor...

9.8CVSS9.4AI score0.00641EPSS

Exploits1

Cvelist•added 2021/12/17 8:5 p.m.•20 views

CVE-2021-23797 Directory Traversal

All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is...

7.5CVSS9.7AI score0.00641EPSS

Exploits1References1

CNNVD•added 2021/12/17 12:0 a.m.•1 views

http-server-node 路径遍历漏洞

Http-Server-Node is an Http server by the individual developer Guro Beridze in Georgia. A security vulnerability exists in http-server-node due to a lack of effective restriction and filtering of directory permissions and path parameters. An attacker can exploit this vulnerability to obtain...

9.8CVSS8.3AI score0.00641EPSS

Exploits1References2

Snyk•added 2021/10/04 8:22 a.m.•1 views

Directory Traversal

Overview http-server-node is a simple, zero-configuration command-line http server Affected versions of this package are vulnerable to Directory Traversal via use of --path-as-is. PoC curl -s --path-as-is http://127.0.0.1:3000/../sensitive-file.txt Details A Directory Traversal attack also known ...

9.8CVSS7.5AI score0.00641EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by