This page lists publicly disclosed CVE vulnerabilities affecting sergey_lyubka simple_httpd (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2007-6326 | Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI. | [email protected] | 5.0 | 6.40% | 2007-12-13 | 2026-04-23 |
| CVE-2007-3407 | Sergey Lyubka Simple HTTPD (shttpd) 1.38 allows remote attackers to obtain sensitive information (script source code) via a URL with a trailing encoded space (%20). | [email protected] | 5.0 | 11.54% | 2007-06-26 | 2026-04-23 |
| CVE-2006-5216 | Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) 1.34 allows remote attackers to execute arbitrary code via a long URI. | [email protected] | 7.5 | 81.80% | 2006-10-10 | 2026-04-23 |