Directory Traversal in cypserver

🗓️ 01 Sep 2020 18:00:26Reported by GitHub Advisory DatabaseType

Directory Traversal vulnerability in cypserver allows access to files outside intended directory. No patch available

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2017-16191	7 Jun 201802:00	–	cvelist
OSV	Directory Traversal in cypserver	1 Sep 202018:26	–	osv
Node.js	Directory Traversal	7 Jul 201721:40	–	nodejs
CVE	CVE-2017-16191	7 Jun 201802:29	–	cve
NVD	CVE-2017-16191	7 Jun 201802:29	–	nvd
Veracode	Directory Traversal	8 Jun 201801:20	–	veracode
Prion	Directory traversal	7 Jun 201802:29	–	prion

Vulners

Node

cypserver_project cypserverRange0.0.0≥

Source	Link
github	www.github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/cypserver
npmjs	www.npmjs.com/advisories/440
nvd	www.nvd.nist.gov/vuln/detail/CVE-2017-16191
github	www.github.com/advisories/GHSA-m69q-pmxg-vqch

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Sep 2020 18:26Current

7.1High risk

Vulners AI Score7.1

CVSS25

CVSS37.5

EPSS0.00651

CWE-22