CGI implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to OS command injection.
Max CVSS
10.0
EPSS Score
59.81%
Published
2020-09-09
Updated
2022-12-06
WebDAV implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to XXE injection.
Max CVSS
9.8
EPSS Score
2.18%
Published
2020-09-09
Updated
2022-12-06
2 vulnerabilities found