Mongoose 2.8.0 and previous versions allows remote malicious users to obtain the source code for a web page by appending ::$DATA to the URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sergey lyubka mongoose |
||
sergey lyubka mongoose 2.4 |