Lucene search
+L

5 matches found

OSV
OSV
added 2020/09/01 6:46 p.m.10 views

GHSA-JP46-FW6C-3PM9 Directory Traversal in scott-blanch-weather-app

Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

7.5CVSS7.4AI score0.02005EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2020/09/01 6:46 p.m.33 views

Directory Traversal in scott-blanch-weather-app

Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

7.5CVSS7.1AI score0.02005EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2018/06/21 12:0 a.m.3 views

scott-blanch-weather-app path traversal vulnerability

scott-blanch-weather-app is a Node.js weather app built with Express. A path traversal vulnerability exists in scott-blanch-weather-app. An attacker can exploit this vulnerability by placing a '... /' sequence in the URL to gain access to the file system...

7.5CVSS7.6AI score0.02005EPSS
Exploits1References1
OSV
OSV
added 2018/06/07 2:29 a.m.4 views

CVE-2017-16184

scott-blanch-weather-app is a sample Node.js app using Express 4. scott-blanch-weather-app is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.5CVSS5.8AI score0.02005EPSS
Exploits1References2
Node.js
Node.js
added 2017/07/17 9:20 p.m.60 views

Directory Traversal

Overview Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the...

5CVSS4.6AI score0.02005EPSS
Exploits1Affected Software1
Rows per page
Query Builder