9 matches found
CVE-2023-30548
gatsby-plugin-sharp is a plugin for the gatsby framework which exposes functions built on the Sharp image processing library. The gatsby-plugin-sharp plugin prior to versions 5.8.1 and 4.25.1 contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. It...
GHSA-H2PM-378C-PCXX Path traversal vulnerability in gatsby-plugin-sharp
Impact The gatsby-plugin-sharp plugin prior to versions 5.8.1 and 4.25.1 contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. The following steps can be used to reproduce the vulnerability: Create a new Gatsby project, and install...
Path traversal vulnerability in gatsby-plugin-sharp
Impact The gatsby-plugin-sharp plugin prior to versions 5.8.1 and 4.25.1 contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. The following steps can be used to reproduce the vulnerability: Create a new Gatsby project, and install...
@ableaura/ableui (=0.1.0), @accodeing/gatsby-theme-heimr (>=0.65.0 <=0.65.1) +873 more potentially affected by CVE-2023-30548 via gatsby-plugin-sharp (>=5.0.0 <=5.6.0)
gatsby-plugin-sharp NPM version =5.0.0, =0.65.0, =5.0.0-rc1, =2018.4.29-10, =3.0.0, =1.0.0, =1.0.13, =2.1.0, =2.0.0, =1.5.0, =3.0.0, =3.0.0, =1.0.42, =1.0.5, =0.3.0, =0.3.27-beta.0 and more Source cves: CVE-2023-30548 Source advisory: OSV:GHSA-H2PM-378C-PCXX...
Path traversal
gatsby-plugin-sharp is a plugin for the gatsby framework which exposes functions built on the Sharp image processing library. The gatsby-plugin-sharp plugin prior to versions 5.8.1 and 4.25.1 contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. It...
CVE-2023-30548 Path traversal vulnerability in gatsby-plugin-sharp
gatsby-plugin-sharp is a plugin for the gatsby framework which exposes functions built on the Sharp image processing library. The gatsby-plugin-sharp plugin prior to versions 5.8.1 and 4.25.1 contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. It...
CVE-2023-30548 Path traversal vulnerability in gatsby-plugin-sharp
gatsby-plugin-sharp is a plugin for the gatsby framework which exposes functions built on the Sharp image processing library. The gatsby-plugin-sharp plugin prior to versions 5.8.1 and 4.25.1 contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. It...
CVE-2023-30548
The CVE-2023-30548 issue affects gatsby-plugin-sharp prior to versions 5.8.1 and 4.25.1, introducing a path traversal vulnerability when running the Gatsby develop server. By default, develop is bound to localhost, but if exposed (e.g., via --host 0.0.0.0, -H 0.0.0.0, or GATSBY_HOST=0.0.0.0), an ...
PT-2023-22774 · Gatsby · Gatsby-Plugin-Sharp
Name of the Vulnerable Software and Affected Versions: gatsby-plugin-sharp versions prior to 5.8.1 and 4.25.1 Description: The gatsby-plugin-sharp plugin contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. By default, gatsby develop is only...