6 matches found
Path Traversal
Mock API configuration is vulnerable to Path Traversal. The vulnerability is due to improper handling of user input in templating features, which allows attackers to manipulate file paths and access arbitrary files on the mock server filesystem...
Mockoon has a Path Traversal and LFI in the static file serving endpoint
Summary A mock API configuration for static file serving following the same approach presented in the documentation page, where the server filename is generated via templating features from user input is vulnerable to Path Traversal and LFI, allowing an attacker to get any file in the mock server...
MAL-2024-2051 Malicious code in cw-mock-api (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in cw-mock-api (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2022-4523 Malicious code in md-mock-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c87e6f67d545e1451e9144d8c5eec185756e0d4f04456e1160e2ab19c5f4f6b7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in md-mock-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c87e6f67d545e1451e9144d8c5eec185756e0d4f04456e1160e2ab19c5f4f6b7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...