Unrated severityNVD Advisory· Published Dec 31, 2009· Updated Apr 23, 2026
CVE-2009-4530
CVE-2009-4530
Description
Mongoose 2.8.0 and earlier allows remote attackers to obtain the source code for a web page by appending ::$DATA to the URI.
Affected products
2cpe:2.3:a:sergey_lyubka:mongoose:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sergey_lyubka:mongoose:*:*:*:*:*:*:*:*range: <=2.8
- cpe:2.3:a:sergey_lyubka:mongoose:2.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- packetstormsecurity.org/0910-exploits/mongoose-disclose.txtnvdExploit
- secunia.com/advisories/36934nvdVendor Advisory
News mentions
0No linked articles in our index yet.