8 matches found
CVE-2019-5415
A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...
CVE-2019-5415
A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...
Design/Logic Flaw
A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...
CVE-2019-5415
A bug in handling the ignore files and directories feature in serve 6.5.3 allows an attacker to read a file or list the directory that the victim has not allowed access to...
CVE-2019-5415
CVE-2019-5415 concerns the Node.js module serve (version 6.5.3) where the ignore feature can be bypassed via a dot-slash path, allowing an attacker to read files or list directories that should be ignored. The root cause is improper handling of ignored paths in the file-serving logic, enabling pa...
CVE-2018-3809
Information exposure through directory listings in serve 6.5.3 allows directory listing and file access even when they have been set to be ignored...
CVE-2018-3809
Information exposure through directory listings in serve 6.5.3 allows directory listing and file access even when they have been set to be ignored...
CVE-2018-3809
The CVE-2018-3809 entry refers to the Node.js module serve (v6.5.3) exposing information via directory listings and bypassing ignore rules on case-insensitive file systems. Technical details from connected records show that versions before 7.0.0 are affected and allow reading ignored files or lis...