TinyWeb HTTP Server

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-22781	TinyWeb TinyWeb HTTP Server		0.00	—	0.02		Jan 12, 2026	TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. TinyWeb HTTP Server before version 1.98 is vulnerable to OS command injection via CGI ISINDEX-style query parameters. The query parameters are passed as command-line arguments to the CGI executable via Windows…
CVE-2024-5193	TinyWeb TinyWeb HTTP Server		0.00	—	0.01		May 22, 2024	A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection. It is possible to initiate the attack remotely. The exploit has…

CVE-2026-22781Jan 12, 2026
TinyWeb
TinyWeb HTTP Server
risk 0.00cvss —epss 0.02
TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. TinyWeb HTTP Server before version 1.98 is vulnerable to OS command injection via CGI ISINDEX-style query parameters. The query parameters are passed as command-line arguments to the CGI executable via Windows…
CVE-2024-5193May 22, 2024
TinyWeb
TinyWeb HTTP Server
risk 0.00cvss —epss 0.01
A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection. It is possible to initiate the attack remotely. The exploit has…