Xerver : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in Xerver HTTP Server 4.32 allows remote attackers to read arbitrary files via a full pathname with a drive letter in the currentPath parameter in a chooseDirectory action.
Max CVSS
5.0
EPSS Score
0.37%
Published
2009-10-05
Updated
2017-09-19
Directory traversal vulnerability in Xerver Free Web Server 2.10 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in an HTTP GET request.
Max CVSS
5.0
EPSS Score
0.47%
Published
2002-07-26
Updated
2008-09-05
2 vulnerabilities found