2 matches found
CVE-2018-3743
CVE-2018-3743 affects the Node.js module hekto up to version 0.2.3, where processing of extensionless HTML can trigger an open redirect when a domain name appears in the filename. The vulnerability is confirmed across multiple sources (GhSA, NVD/NVD-listed, and public advisories) with explicit re...
CVE-2018-3743
Open redirect in hekto =0.2.3 when target domain name is used as html filename on server...