Vulnerabilities (CVE)

Filtered by vendor Sergey Lyubka Subscribe
Filtered by product Mongoose
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-4530 1 Sergey Lyubka 1 Mongoose 2024-11-21 5.0 MEDIUM N/A
Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI.
CVE-2009-1354 1 Sergey Lyubka 1 Mongoose 2024-11-21 4.0 MEDIUM N/A
Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.