7.1 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.9%
Directory traversal vulnerability in the st module before 0.2.5 for Node.js allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in an unspecified path.
www.openwall.com/lists/oss-security/2014/05/13/1
www.openwall.com/lists/oss-security/2014/05/15/2
www.securityfocus.com/bid/67389
github.com/isaacs/st
nodesecurity.io/advisories/st_directory_traversal