@nubosoftware/node-static@0.7.11 vulnerabilities
simple, compliant file streaming module for node
-
latest version
0.7.11
-
first published
2 years ago
-
latest version published
2 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the @nubosoftware/node-static package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@nubosoftware/node-static is a simple, compliant file streaming module for node Affected versions of this package are vulnerable to Directory Traversal due to improper file path sanitization in the How to fix Directory Traversal? There is no fixed version for |
*
|
@nubosoftware/node-static is a simple, compliant file streaming module for node Affected versions of this package are vulnerable to Denial of Service (DoS). The package fails to catch an exception when user input includes null bytes. This allows attackers to access How to fix Denial of Service (DoS)? A fix was pushed into the |
*
|