3 matches found
CVE-2019-5444
Path traversal vulnerability in version up to v1.1.3 in serve-here.js npm module allows attackers to list any file in arbitrary folder...
CVE-2019-5444
Path traversal vulnerability in version up to v1.1.3 in serve-here.js npm module allows attackers to list any file in arbitrary folder...
CVE-2019-5444
CVE-2019-5444 refers to a path traversal vulnerability in the npm module serve-here.js prior to version 1.2.0 (reported with version 1.1.3). The issue arises because the package does not sanitize URL paths, allowing an attacker to access files outside the served folder by using relative paths (e....