Lucene search
K

8 matches found

NVD
NVD
added 2019/03/21 4:1 p.m.19 views

CVE-2019-5415

A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...

7.5CVSS7.3AI score0.01689EPSS
Exploits1References1
OSV
OSV
added 2019/03/21 4:1 p.m.16 views

CVE-2019-5415

A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...

7.5CVSS6.5AI score
Exploits0References1
Prion
Prion
added 2019/03/21 4:1 p.m.14 views

Design/Logic Flaw

A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...

5CVSS7.3AI score0.01689EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/03/17 7:28 p.m.24 views

CVE-2019-5415

A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...

7.3AI score0.01689EPSS
Exploits1References1
CVE
CVE
added 2019/03/17 7:28 p.m.55 views

CVE-2019-5415

CVE-2019-5415 concerns the Node.js module serve (version 6.5.3) where the ignore feature can be bypassed via a dot-slash path, allowing an attacker to read files or list directories that should be ignored. The root cause is improper handling of ignored paths in the file-serving logic, enabling pa...

7.5CVSS7.2AI score0.01689EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/06/01 7:29 p.m.27 views

CVE-2018-3809

Information exposure through directory listings in serve 6.5.3 allows directory listing and file access even when they have been set to be ignored...

5.3CVSS5.3AI score0.01048EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/06/01 7:0 p.m.30 views

CVE-2018-3809

Information exposure through directory listings in serve 6.5.3 allows directory listing and file access even when they have been set to be ignored...

5.3AI score0.01048EPSS
Exploits1References1
CVE
CVE
added 2018/06/01 7:0 p.m.60 views

CVE-2018-3809

The CVE-2018-3809 entry refers to the Node.js module serve (v6.5.3) exposing information via directory listings and bypassing ignore rules on case-insensitive file systems. Technical details from connected records show that versions before 7.0.0 are affected and allow reading ignored files or lis...

5.3CVSS5.2AI score0.01048EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder