8 matches found
Directory Traversal in tmock
tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host: localhost and server Response: http HTTP/1.1 200 OK Date:...
GHSA-J6W4-PG6P-5MRV Directory Traversal in tmock
tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. Example request: http GET /../../../../../../../../../../etc/passwd HTTP/1.1 host: localhost and server Response: http HTTP/1.1 200 OK Date:...
tmock Directory Traversal Vulnerability
tmock is a static file server. A directory traversal vulnerability exists in tmock. An attacker can exploit this vulnerability to gain access to the file system by placing a '... /' sequence in a URL to gain access to the file system...
Directory Traversal
tmock is vulnerable to directory traversal attacks. This attack is possible by requesting a url such as /..%2f..%2fetc/passwd to get sensitive information...
CVE-2017-16106
tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
Directory traversal
tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...
CVE-2017-16106
CVE-2017-16106 : The static file server tmock is vulnerable to a directory traversal via URLs containing ".. /", allowing access to the filesystem (e.g., reading /etc/passwd). Several connected advisories confirm this issue and indicate there is no patch available ; the guidance is to restrict tm...
CVE-2017-16106
tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...