Static-web-server Vulnerabilities
Comprehensive security vulnerability database for Static-web-server products
1
0
1
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-27480 | 5.3 | This vulnerability allows attackers to discover valid usernames by measuring how long the server takes to respond to login attempts; valid usernames take longer due to additional processing. It affects versions 2.1.0 through 2.40.1 of the static web server, and attackers can exploit this by trying different usernames to see which ones are valid before attempting to guess passwords. | static-web-serverstatic web server | Exploit Available | about 2 months agoFeb 21, 2026 |
About Static-web-server Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Static-web-server products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.