Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
http-file-server project http-file-server vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2021-40668
The Android application HTTP File Server (Version 1.4.1) by 'slowscript' is affected by a path traversal vulnerability that permits arbitrary directory listing, file read, and file write.
Http File Server Project Http File Server 1.4.1
5.4
CVSSv3
CVE-2019-5458
Cross-site scripting (XSS) vulnerability in http-file-server (all versions) allows an attacker with access to the server file system to execute arbitrary JavaScript code in victim's browser.
Http-file-server Project Http-file-server 0.1.0
Http-file-server Project Http-file-server 0.2.0
Http-file-server Project Http-file-server 0.2.1
Http-file-server Project Http-file-server 0.2.2
Http-file-server Project Http-file-server 0.2.3
Http-file-server Project Http-file-server 0.2.4
Http-file-server Project Http-file-server 0.2.5
Http-file-server Project Http-file-server 0.2.6
5.3
CVSSv3
CVE-2019-5447
A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows malicious users to list files in arbitrary folders.
Http-file-server Project Http-file-server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started