CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mongrel: Security Vulnerabilities

CVE-2007-6612

Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb) in Mongrel 1.0.4 and 1.1.x before 1.1.3 allows remote attackers to read arbitrary files via an HTTP request containing double-encoded sequences (".%252e").

CVSS Score

6.4

EPSS Score

0.021

Published

2008-01-03

Page 1

Vulnerabilities

Vulnerable Software

Mongrel: Security Vulnerabilities

Products

Pricing

Contact Us