Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project server vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-15600
A Path traversal exists in http_server which allows an malicious user to read arbitrary system files.
Http Server Project Http Server 1.0.12
6.1
CVSSv3
CVE-2020-18102
Cross Site Scripting (XSS) in Hotels_Server v1.0 allows remote malicious users to execute arbitrary code by injecting crafted commands the data fields in the component "/controller/publishHotel.php".
Hotels Server Project Hotels Server 1.0
7.5
CVSSv3
CVE-2020-35857
An issue exists in the trust-dns-server crate prior to 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption.
Trust-dns-server Project Trust-dns-server
7.2
CVSSv3
CVE-2021-24662
The Game Server Status WordPress plugin up to and including 1.0 does not validate or escape the server_id parameter before using it in SQL statement, leading to an Authenticated SQL Injection in an admin page
Game-server-status Project Game-server-status
9.8
CVSSv3
CVE-2021-40818
scheme/webauthn.c in Glewlwyd SSO server up to and including 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.
Glewlwyd Sso Server Project Glewlwyd Sso Server
5.3
CVSSv3
CVE-2019-5447
A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows malicious users to list files in arbitrary folders.
Http-file-server Project Http-file-server
7.5
CVSSv3
CVE-2022-25931
All versions of package easy-static-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.
Easy-static-server Project Easy-static-server
7.5
CVSSv3
CVE-2017-16036
`badjs-sourcemap-server` receives files sent by `badjs-sourcemap`. `badjs-sourcemap-server` is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Badjs-sourcemap-server Project Badjs-sourcemap-server
7.5
CVSSv3
CVE-2017-16124
node-server-forfront is a simple static file server. node-server-forfront is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Node-server-forfront Project Node-server-forfront
7.5
CVSSv3
CVE-2017-16210
jn_jj_server is a static file server. jn_jj_server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Jn Jj Server Project Jn Jj Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »