3 matches found
CVE-2018-3727
626 node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path...
CVE-2018-3727
626 node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path...
CVE-2018-3727
Summary: CVE-2018-3727 affects the 626 Node.js module. All versions are vulnerable to path traversal due to lack of validation of requested file paths, allowing a remote attacker to read arbitrary files on the server hosting the module. Several connected sources (GHSA, OSV, CNVD, CN) corroborate ...