Vulnerabilities (CVE)

Filtered by vendor Fancy-server Project Subscribe
Filtered by product Fancy-server
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-10066 1 Fancy-server Project 1 Fancy-server 2024-02-28 5.0 MEDIUM 7.5 HIGH
Versions less than 0.1.4 of the static file server module fancy-server are vulnerable to directory traversal. An attacker can provide input such as `../` to read files outside of the served directory.