Liang Gong - Security Researcher - Exploit Intelligence Platform

CVE-2017-16149 WRITEUP HIGH WORKING POC

zwserver < 0.1.1 - Path Traversal via URL Manipulation

zwserver is a weather web server. zwserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16150 WRITEUP HIGH WORKING POC

wanggoujing123 < 1.3.0 - Path Traversal via URL

wanggoujing123 is a simple webserver. wanggoujing123 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16152 WRITEUP HIGH WORKING POC

static-html-server - Path Traversal

static-html-server is a static file server. static-html-server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16153 WRITEUP HIGH WORKING POC

gaoxuyan - Path Traversal via URL Parameter

gaoxuyan is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16154 WRITEUP HIGH WORKING POC

earlybird - Path Traversal via URL Manipulation

earlybird is a web server module for early development. earlybird is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16155 WRITEUP HIGH WORKING POC

fast-http-cli - Path Traversal via URL Parameter

fast-http-cli is the command line interface for fast-http, a simple web server. fast-http-cli is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16156 WRITEUP HIGH WORKING POC

myprolyz - Path Traversal via URL Manipulation

myprolyz is a static file server. myprolyz is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16161 WRITEUP HIGH WORKING POC

shenliru - Path Traversal via URL Manipulation

shenliru is a simple file server. shenliru is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code

CVE-2017-16162 WRITEUP HIGH WORKING POC

22lixian - Path Traversal via URL Parameter

22lixian is a simple file server. 22lixian is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.

CVSS 7.5

View Code