CNNVD-202508-2507 Information

CNNVD ID

CNNVD-202508-2507

Related CVE

CVE-2012-10061

• CNNVD Published: 2025-08-20

Description (Chinese)

Sockso Music Host Server是Rhodri Pugh个人开发者的一个音乐流媒体播放器。 Sockso Music Host Server 1.5及之前版本存在安全漏洞，该漏洞源于HTTP接口存在路径遍历漏洞，可能导致读取任意文件。

Description (English)

Sockso Music Host Server is a music stream player for the individual Rhodri Pugh developer. Sockso Music Host Server 1.5 and previous versions had a security loophole, which stemmed from the PTTP interface ’ s routing gap, which could lead to the reading of any document.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-20

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/sockso-music-host-server-path-traversal https://www.exploit-db.com/exploits/18605 http://sockso.pu-gh.com/ https://web.archive.org/web/20120326095835/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/ https://github.com/rodnaph/sockso http://aluigi.altervista.org/adv/sockso_1-adv.txt https://nvd.nist.gov/vuln/detail/CVE-2012-10061