CVE-2020-24855

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

EUVD-2022-7471

Malicious code in bioql PyPI...

Directory Traversal

@easy-team/easywebpack-cli is vulnerable to directory traversal. The vulnerability exists in the downloadTemplate function in template.js due to a lack of hiding the file mode which allows an attacker to obtain sensitive information via malicious GET request...

GHSA-252H-2CMQ-PMR6 easywebpack-cli Path Traversal vulnerability

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

easywebpack-cli Path Traversal vulnerability

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

CVE-2020-24855

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

CVE-2020-24855

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

Directory traversal

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

CVE-2020-24855

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

CVE-2020-24855

Directory Traversal vulnerability in easywebpack-cli before 4.5.2 allows attackers to obtain sensitive information via crafted GET request...

CVE-2020-24855

CVE-2020-24855 is a directory traversal vulnerability in the open source tool easywebpack-cli prior to version 4.5.2 . The issue arises in the package’s template handling (notably the downloadTemplate function), where failure to sufficiently conceal file modes enables an attacker to craft a GET r...

easywebpack-cli 路径遍历漏洞

easywebpack-cli is easy-team open source a powerful cross-platform Webpack CLI tool . A security vulnerability exists in easywebpack-cli versions prior to 4.5.2. Attackers use the vulnerability to obtain sensitive information through a specially crafted GET request...

PT-2022-8697 · Unknown · Easywebpack-Cli

Name of the Vulnerable Software and Affected Versions: easywebpack-cli versions prior to 4.5.2 Description: A Directory Traversal issue allows attackers to obtain sensitive information by sending a crafted GET request. Recommendations: For versions prior to 4.5.2, update to version 4.5.2 or later...