VDB
CVE-2018-19052
CVE-2018-19052
PUBLISHED
EPSS 57.12% · 98.2th percentile
Risk Scores
EPSS Score
57.12%
98.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | lighttpd |
Exploit Intelligence
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc-repo)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc)
- PoC for a security: potential path traversal with specific configs, if `mod_dirlisting` were enabled, which is not the default, this would result in listing the contents of the directory above the alias.. (github-poc)
…and 8 more exploits
Timeline
- Nov 7, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Mar 7, 2023 EPSS Score
- Aug 5, 2024 CVE Updated
- Mar 19, 2025 EPSS Score
- Mar 23, 2025 EPSS Score
- Mar 27, 2025 EPSS Score
- Mar 29, 2025 EPSS Score
- Apr 4, 2025 EPSS Score
- Apr 10, 2025 EPSS Score
- Apr 15, 2025 EPSS Score
- Apr 17, 2025 EPSS Score
References
- ALAS-2019-1265: lighttpd (medium) advisory