Sergey Lyubka: >> Mongoose Security Vulnerabilities
Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI.
CVSS Score
5.0
EPSS Score
0.002
Published
2009-12-31
Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.
CVSS Score
4.0
EPSS Score
0.014
Published
2009-04-21