file-static-server@1.0.2 vulnerabilities
file static server
-
latest version
1.0.2
-
first published
7 years ago
-
latest version published
7 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the file-static-server package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of file-static-server are vulnerable to Directory Traversal. The function which creates path for file to read does not implement any validation of input data and takes path. As a result, a malicious user could read arbitrary files from the remote server. How to fix Directory Traversal? There is no fix version for |
*
|