← CVECheck
HomeVulnerabilities

CVE-1999-1456 — MEDIUM severity vulnerability (thttpd HTTP server 2.03 and earlier allows remote attackers)

thttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET request with more than one leading / (slash) character in the filename.

CVE IDCVE-1999-1456
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published1999-12-31
Last modified2026-04-16
Descriptionthttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET request with more than one leading / (slash) character in the filename.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →