• ACME mini_httpd is a minimalistic web server designed for optimal performance, high security, and as little use of system resources as possible.
  
  ACME mini_httpd before version 1.30 lets remote users read arbitrary files via a logical bug.

• Upgrade to the latest version of ACME mini_httpd. This issue was fixed in version 1.30.

• • CVE-2018-18778
  • mini_httpd

• 

• CVE-2018-18778

• CWE-23

• Directory Traversal

• Ext JS arbitrary file read
• WordPress Plugin NextGEN Gallery-WordPress Gallery Directory Traversal (2.1.9)
• WordPress 2.3.3 Directory Traversal Vulnerability (0.6.2 - 2.3.3)
• WEBrick v.1.3 directory traversal
• WordPress Plugin Paid Memberships Pro Directory Traversal (1.7.14.2)