CNNVD-202601-4252 Information

CNNVD ID

CNNVD-202601-4252

Related CVE

CVE-2026-24469

• CNNVD Published: 2026-01-24

Description (Chinese)

C++ HTTP Server是Aryan Singh个人开发者的一个HTTP/1.1服务器。 C++ HTTP Server 1.0及之前版本存在路径遍历漏洞，该漏洞源于RequestHandler::handleRequest方法未对用户控制的文件名进行清理，可能导致路径遍历和任意文件读取。

Description (English)

C++ HTTP Server is an HTTP/1.1 server for Aryan Singh’s personal developer. The C++ HTTP Server 1.0 and previous versions have path-to-path loopholes, which stem from the fact that the Requesthandler:handleRequest method does not clean up user-controlled filenames, which may lead to routing and any file reading.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

个人开发者

Published

2026-01-24

Last Modified

2026-02-24

References

https://github.com/frustratedProton/ https://access.redhat.com/security/cve/cve-2026-24469