GHSA-6W83-22GJ-5PV9 Directory Traversal in cyber-js

Affected versions of cyber-js resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

Directory Traversal in cyber-js

Affected versions of cyber-js resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

Directory Traversal

cyber-js is vulnerable to directory traversal. This attack is possible by requesting a url such as /..%2f..%2fetc/passwd to get sensitive information...

CVE-2017-16093

cyber-js is a simple http server. A cyberjs server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

CVE-2017-16093

CVE-2017-16093 concerns the cyber-js project, a simple http server, vulnerable to directory traversal that allows an attacker to access the filesystem by placing a relative path (e.g., ../../) in the URL. Connected sources confirm the vulnerability affects the cyber-js package and describe the at...

Directory Traversal

Overview Affected versions of cyber-js resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system...