7.0.6
9 years ago
3 days ago
Known vulnerabilities in the iobroker.js-controller package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
iobroker.js-controller is a controller that is owning the central configuration of the ioBroker installation and controls and monitors all adapter processes for the current host. Affected versions of this package are vulnerable to Directory Traversal. An attacker can include file contents from outside the Note: The attacker has to be logged in if the authentication is enabled (by default isn't enabled). How to fix Directory Traversal? Upgrade | <2.0.25 |