rollup-plugin-serve-favicon@0.4.4 vulnerabilities
Serve your rolled up bundle
-
latest version
0.4.7
-
first published
6 years ago
-
latest version published
6 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the rollup-plugin-serve-favicon package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
rollup-plugin-serve-favicon is a rollup plugin to serve bundles. Affected versions of this package are vulnerable to Directory Traversal. There is no path sanitization in PoC by JHU System Security LabStep 1: start a server
Step 2: create a file named How to fix Directory Traversal? There is no fixed version for |
*
|