Security Advisory

CVE-2019-25352

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-18 21:54:58

Last updated 2026-02-19 15:55:57

Assigner VulnCheck

State PUBLISHED

Description

Crystal Live HTTP Server 6.01 contains a directory traversal vulnerability that allows remote attackers to access system files by manipulating URL path segments. Attackers can use multiple ../ sequences to navigate outside the web root and retrieve sensitive configuration files like Windows system files.

← Browse all CVEs View on cve.org ↗