Sergey Lyubka Mongoose vulnerabilities
2 known vulnerabilities affecting sergey_lyubka/mongoose.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2009-1354P4MEDIUMCVSS 4.0PoCv2.42009-04-21
CVE-2009-1354 [MEDIUM] CWE-22 CVE-2009-1354: Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files vi
Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.
nvd
CVE-2009-4530P4MEDIUMCVSS 5.0≤ 2.8v2.42009-12-31
CVE-2009-4530 [MEDIUM] CWE-200 CVE-2009-4530: Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appen
Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI.
nvd