Lucene search
GoogleOSV:GHSA-QH9Q-34H6-HCV9HistoryOct 12, 2021 - 6:48 p.m.
Directory traversal in mkdocs
2021-10-1218:48:24
Google
osv.dev
5
0.031 Low
EPSS
Percentile
91.1%
The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enabling remote exploitation to obtain :sensitive information.
References
github.com/mkdocs/mkdocs
github.com/mkdocs/mkdocs/commit/1b15412f4caae476c262210315fd068d0521a833
github.com/mkdocs/mkdocs/commit/57540911a0d632674dd23edec765189f96f84f6b
github.com/mkdocs/mkdocs/issues/2601
github.com/mkdocs/mkdocs/pull/2604
github.com/mkdocs/mkdocs/releases/tag/1.2.3
github.com/nisdn/CVE-2021-40978
github.com/nisdn/CVE-2021-40978/issues/1
github.com/pypa/advisory-database/tree/main/vulns/mkdocs/PYSEC-2021-878.yaml
nvd.nist.gov/vuln/detail/CVE-2021-40978
Related
ubuntucve
ubuntucve
CVE-2021-40978
2021-10-07 00:00:00
vulnrichment
vulnrichment
CVE-2021-40978
2021-10-07 13:23:41
prion
prion
Directory traversal
2021-10-07 14:15:00
osv
osv
PYSEC-2021-878
2021-10-07 14:15:00
github
github
Directory traversal in mkdocs
2021-10-12 18:48:24
nuclei
nuclei
MKdocs 1.2.2 - Directory Traversal
2021-10-14 01:37:46
cvelist
cvelist
CVE-2021-40978
2021-10-07 13:23:41
debiancve
debiancve
CVE-2021-40978
2021-10-07 14:15:08
nvd
nvd
CVE-2021-40978
2021-10-07 14:15:08
cve
cve
CVE-2021-40978
2021-10-07 14:15:08
githubexploit
githubexploit
Exploit for Path Traversal in Mkdocs
2021-10-04 01:36:17
openvas
openvas
Generic HTTP Directory Traversal (Web Root) - Active Check
2017-04-18 00:00:00