react-native-document-picker@8.1.1 vulnerabilities

A react native interface to access documents from dropbox, google drive, iCloud...

Direct Vulnerabilities

Known vulnerabilities in the react-native-document-picker package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Path Traversal

react-native-document-picker is an A react native interface to access documents from dropbox, google drive, iCloud...

Affected versions of this package are vulnerable to Path Traversal due to improper input validation in the Android library component. A local attacker can execute arbitrary code by supplying a crafted script.

How to fix Path Traversal?

Upgrade react-native-document-picker to version 9.1.1 or higher.

<9.1.1