Lucene search
+L

9 matches found

OSV
OSV
added 2020/09/01 6:16 p.m.28 views

GHSA-M362-87JC-F39V Directory Traversal in uv-tj-demo

Affected versions of uv-tj-demo resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

7.5CVSS7.4AI score0.02005EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2020/09/01 6:16 p.m.22 views

Directory Traversal in uv-tj-demo

Affected versions of uv-tj-demo resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

7.5CVSS7.1AI score0.02005EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2018/06/08 1:55 a.m.15 views

Directory Traversal

uv-tj-demo is vulnerable to directory traversal attacks. These attacks are possible by requesting a url such as /..%2f..%2fetc/passwd to get sensitive information...

7.5CVSS7.3AI score0.02005EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2018/06/08 12:0 a.m.6 views

uv-tj-demo directory traversal vulnerability

uv-tj-demo is a static file server. A directory traversal vulnerability exists in uv-tj-demo. An attacker can exploit this vulnerability by placing ". /" in a URL to access the file system...

7.5CVSS7.5AI score0.02005EPSS
Exploits1References1
OSV
OSV
added 2018/06/07 2:29 a.m.6 views

CVE-2017-16200

uv-tj-demo is a static file server. uv-tj-demo is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.5CVSS5.8AI score0.02005EPSS
Exploits1References2
NVD
NVD
added 2018/06/07 2:29 a.m.18 views

CVE-2017-16200

uv-tj-demo is a static file server. uv-tj-demo is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.5CVSS7.5AI score0.02005EPSS
Exploits1References2
CVE
CVE
added 2018/06/07 2:0 a.m.54 views

CVE-2017-16200

The CVE concerns uv-tj-demo, a static file server, with a directory-traversal vulnerability exploitable via ../ in the request path. Affected component is the server’s URL handling (paths resolved outside the root). Potential impact is disclosure of private files on the vulnerable system, as desc...

7.5CVSS7.4AI score0.02005EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/06/07 2:0 a.m.18 views

CVE-2017-16200

uv-tj-demo is a static file server. uv-tj-demo is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.4AI score0.02005EPSS
Exploits1References2
Node.js
Node.js
added 2017/07/07 12:0 a.m.45 views

Directory Traversal

Overview Affected versions of uv-tj-demo resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system...

5CVSS4.6AI score0.02005EPSS
Exploits1Affected Software1
Rows per page
Query Builder