cve/CVE-2009-1354.md at master - cve - Gitea: Git with a cup of tea

0xMarcio/cve

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

600 B

Raw Permalink Blame History

CVE-2009-1354

Description

Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.

POC

Reference

https://www.exploit-db.com/exploits/8428

Github

No PoCs found on GitHub currently.