Low severity vulnerability that affects m-server

2019-02-07T18:16:16
ID GHSA-GMXV-XF2Q-6J8M
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:06

Description

A XSS vulnerability was found in module m-server <1.4.2 that allows malicious Javascript code or HTML to be executed, due to the lack of escaping for special characters in folder names.