Yaws URI Directory Traversal Vulnerability Network Vulnerability

Summary

Yaws is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. Yaws 1.89 is vulnerable other versions may also be affected.

References

http://yaws.hyber.org/
https://www.securityfocus.com/bid/44564

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4181

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache mod_proxy_ajp Information Disclosure Vulnerability
Advanced Image Hosting Cross Site Scripting Vulnerability
Andy's PHP Knowledgebase Multiple Cross-Site Scripting Vulnerabilities
Apache Tomcat TroubleShooter Servlet Installed
Adobe ColdFusion Unspecified Information Disclosure Vulnerability

Take action and discover your vulnerabilities