CVE-2026-35471

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, tdeleteFile missing return after path traversal check. This vulnerability is fixed in 2.0.0-beta.3...

CVE-2026-35471

goshs (Go SimpleHTTPServer) contains a path-traversal vulnerability in tdeleteFile() where a missing return after the traversal check allowed deletion of files outside the webroot. This is fixed in version 2.0.0-beta.3; upgrading to 2.0.0-beta.3 or newer is recommended. OpenSUSE and Red Hat advis...

EUVD-2002-1849

Malware in sbrugna...

EUVD-2012-6582

Malware in sbrugna...

EUVD-2005-1176

Malware in sbrugna...

EUVD-2002-1845

Malware in sbrugna...

CVE-2012-10053

Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker sends an overly long string in this header, the server uses vsprintf without proper bounds checking, leading to a buffer overflow on the stack. This...

CVE-2012-10053 Simple Web Server Connection Header Buffer Overflow

Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker sends an overly long string in this header, the server uses vsprintf without proper bounds checking, leading to a buffer overflow on the stack. This...

CVE-2012-10053 Simple Web Server Connection Header Buffer Overflow

Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker sends an overly long string in this header, the server uses vsprintf without proper bounds checking, leading to a buffer overflow on the stack. This...

CVE-2012-10053

CVE-2012-10053 affects Simple Web Server 2.2 rc2 and is a stack-based buffer overflow in processing the Connection HTTP header. The server uses vsprintf() without bounds checking, allowing a remote attacker to trigger a stack overflow and execute arbitrary code with the web server process privile...

PT-2025-32406 · Unknown · Simple Web Server

Name of the Vulnerable Software and Affected Versions: Simple Web Server version 2.2 rc2 Description: Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker sends an overly long string in this header, th...

CVE-2002-1870

Simple Web Server SWS 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution...

CVE-2002-1866

Simple Web Server SWS 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service file descriptor exhaustion via multiple requests for pages that do not exist...

CVE-2002-1864

Directory traversal vulnerability in Simple Web Server SWS 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files via a ".." dot dot in an HTTP request...

Intrasrv Simple Web Server 1.0 Denial Of Service

!/usr/bin/perl use IO::Socket; Exploit Title: Intrasrv Simple Web Server 1.0 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 09 january 2024 Vendor Homepage: http://www.leighb.com/intrasrv.htm Download to demo: http://www.leighb.com/intrasrv.zip Download 2 to demo:...

Intrasrv Simple Web Server 1.0 Denial Of Service Exploit

!/usr/bin/perl use IO::Socket; Exploit Title: Intrasrv Simple Web Server 1.0 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 09 january 2024 Vendor Homepage: http://www.leighb.com/intrasrv.htm Download to demo: http://www.leighb.com/intrasrv.zip Download 2 to demo:...

CVE-2023-46919

Phlox com.phlox.simpleserver aka Simple HTTP Server 1.8 and com.phlox.simpleserver.plus aka Simple HTTP Server PLUS 1.8.1-plus have a hardcoded aKySWb2jjrr4dzkYXczKRt7K AES encryption key. An attacker with physical access to the application's source code or binary can extract this key & use it...

simple web-server 1.2 - Directory Traversal

No description provided by source. ------------------------------------------------------------------------ Software................Simple web-server 1.2 Vulnerability...........Directory Traversal Threat Level............Serious 3/5 Download................http://www.storecalc.com Discovery...

silentthought simple web server 1.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7888/info It has been reported that Simple Web Server fails to properly sanitize web requests. By sending a malicious web request to the vulnerable server, using directory traversal sequences, it is possible for a remote...

Intrasrv Simple Web Server 1.0 - SEH Based Remote Code Execution

No description provided by source. Exploit Title: Intrasrv Simple Web Server 1.0 SEH based Remote Code Execution BOF Date: 29.05.2013 Exploit Author: xisone@STM Solutions Vendor Homepage: http://www.leighb.com/intrasrv.htm Software Link: http://www.leighb.com/intrasrv.zip Version: 1.0 Tested on:...