CVE-2016-10561

Summary

Bitty is a development web server tool that functions similar to python -m SimpleHTTPServer. Version 0.2.10 has a directory traversal vulnerability that is exploitable via the URL path in GET requests.

Affected Software

VendorProductVersion RangeStatus
HackerOnebitty node moduleAll versionsaffected

Weaknesses

  • CWE-22: Path Traversal (CWE-22)

ADP Enrichment

CVE Program Container

Additional References

References