2 matches found
CVE-2018-3731
CVE-2018-3731 affects the public Node.js module (versions prior to 0.1.3). The vulnerability stems from lack of validation/sanitization of filePath, enabling a path traversal attack that lets an attacker read arbitrary files on the server where the module runs. Impact is read access to files; no ...
CVE-2018-3731
public node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path...