2 matches found
CVE-2017-16184
Summary (CVE-2017-16184): The issue affects the Node.js/Express-based sample app scott-blanch-weather-app , where a directory traversal vulnerability exists in path handling that allows access to the filesystem by using sequences like '../../..'. The root cause is improper handling of user-suppli...
CVE-2017-16184
scott-blanch-weather-app is a sample Node.js app using Express 4. scott-blanch-weather-app is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...