|
258211
|
7.5 |
HIGH
Network
|
serverwzl_project
|
serverwzl
|
serverwzl is a simple http server. serverwzl is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
|
CWE-22
Path Traversal
|
CVE-2017-16105
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258212
|
7.5 |
HIGH
Network
|
citypredict.whauwiller_project
|
citypredict.whauwiller
|
citypredict.whauwiller is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
|
CWE-22
Path Traversal
|
CVE-2017-16104
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258213
|
7.5 |
HIGH
Network
|
serveryztyzt_project
|
serveryztyzt
|
serveryztyzt is a simple http server. serveryztyzt is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
|
CWE-22
Path Traversal
|
CVE-2017-16103
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258214
|
7.5 |
HIGH
Network
|
serverhuwenhui_project
|
serverhuwenhui
|
serverhuwenhui is a simple http server. serverhuwenhui is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
|
CWE-22
Path Traversal
|
CVE-2017-16102
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258215
|
7.5 |
HIGH
Network
|
serverwg_project
|
serverwg
|
serverwg is a simple http server. serverwg is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
|
CWE-22
Path Traversal
|
CVE-2017-16101
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258216
|
9.8 |
CRITICAL
Network
|
dns-sync_project
|
dns-sync
|
dns-sync is a sync/blocking dns resolver. If untrusted user input is allowed into the resolve() method then command injection is possible.
|
CWE-77
Command Injection
|
CVE-2017-16100
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258217
|
7.5 |
HIGH
Network
|
no-case_project
|
no-case
|
The no-case module is vulnerable to regular expression denial of service. When malicious untrusted user input is passed into no-case it can block the event loop causing a denial of service condition.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-16099
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258218
|
7.5 |
HIGH
Network
|
charset_project
|
charset
|
charset 1.0.0 and below are vulnerable to regular expression denial of service. Input of around 50k characters is required for a slow down of around 2 seconds. Unless node was compiled using the -DHT…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-16098
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258219
|
7.5 |
HIGH
Network
|
tiny-http_project
|
tiny-http
|
tiny-http is a simple http server. tiny-http is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
|
CWE-22
Path Traversal
|
CVE-2017-16097
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258220
|
7.5 |
HIGH
Network
|
serveryaozeyan_project
|
serveryaozeyan
|
serveryaozeyan is a simple HTTP server. serveryaozeyan is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
|
CWE-22
Path Traversal
|
CVE-2017-16096
|
2024-11-21 12:15 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
