sergey lyubka vulnerabilities and exploits

(subscribe to this query)

Mongoose 2.8.0 and previous versions allows remote malicious users to obtain the source code for a web page by appending ::$DATA to the URI.

Sergey Lyubka Mongoose Sergey Lyubka Mongoose 2.4

Directory traversal vulnerability in Mongoose 2.4 allows remote malicious users to read arbitrary files via a .. (dot dot) in the URI.

Sergey Lyubka Mongoose 2.4

1 EDB exploit

Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote malicious users to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI.

Sergey Lyubka Simple Httpd 1.3

1 EDB exploit

Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote malicious users to execute arbitrary code via a long URI.

Sergey Lyubka Simple Httpd 1.34

2 EDB exploits

Sergey Lyubka Simple HTTPD (shttpd) 1.38 allows remote malicious users to obtain sensitive information (script source code) via a URL with a trailing encoded space (%20).

Sergey Lyubka Simple Httpd 1.38

1 EDB exploit

Directory traversal vulnerability in Sergey Lyubka Simple HTTPD (shttpd) 1.38 and previous versions on Windows allows remote malicious users to read arbitrary files via a ..\ (dot dot backslash) in the URI.

1 EDB exploit

Sergey Lyubka Simple HTTPD (shttpd) 1.38 and previous versions on Windows allows remote malicious users to download arbitrary CGI programs or scripts via a URI with an appended (1) '+' character, (2) '.' character, (3) %2e sequence (hex-encoded dot), or (4) he...

Shttpd Shttpd 1.34 Shttpd Shttpd 1.35 Shttpd Shttpd 1.38

1 EDB exploit

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook