wrangler@0.0.0-c0343304 vulnerabilities

Command-line interface for all things Cloudflare Workers

Direct Vulnerabilities

Known vulnerabilities in the wrangler package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Directory Traversal

wrangler is a Command-line interface for all things Cloudflare Workers

Affected versions of this package are vulnerable to Directory Traversal when running a local development server for Pages (wrangler pages dev command). This vulnerability enabled an attacker in the same network as the victim to connect to the local development server and access the victim's files present outside of the directory for the development server.

How to fix Directory Traversal?

Upgrade wrangler to version 3.1.1 or higher.

<3.1.1