Lucene search

Sergey Lyubka Security Vulnerabilities

cve

CVE-2006-5216

Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI.

8.1AI Score

0.947EPSS

2006-10-10 04:06 AM

cve

CVE-2007-3407

Sergey Lyubka Simple HTTPD (shttpd) 1.38 allows remote attackers to obtain sensitive information (script source code) via a URL with a trailing encoded space (%20).

6AI Score

0.021EPSS

2007-06-26 06:30 PM

cve

CVE-2007-6326

Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI.

6.6AI Score

0.034EPSS

2007-12-13 07:46 PM

cve

CVE-2009-1354

Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.

6.8AI Score

0.021EPSS

2009-04-21 04:24 PM

cve

CVE-2009-4530

Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI.

6.8AI Score

0.002EPSS

2022-10-03 04:24 PM