Directory traversal vulnerability in the HTTP file-serving module (mod_http_files) in Prosody 0.9.x before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) in an unspecified path.
Max CVSS
5.9
EPSS Score
1.18%
Published
2016-01-12
Updated
2016-06-15
1 vulnerabilities found