Lucene search
K

4 matches found

Veracode
Veracode
added 2026/04/17 9:26 a.m.7 views

Path Traversal

Hono is vulnerable to Path Traversal. The vulnerability is due to a path traversal issue in toSSG, where specially crafted values can cause generated file paths to escape the intended output directory, and attackers who can influence values passed to ssgParams during the build process may be able...

7.5CVSS5.7AI score0.00532EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/11 1:21 a.m.3 views

CVE-2026-39408

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path traversal issue in toSSG allows files to be written outside the configured output directory during static site generation. When using dynamic route parameters via ssgParams, specially...

7.5CVSS5.6AI score0.00532EPSS
Exploits1References1
NVD
NVD
added 2026/04/08 3:16 p.m.17 views

CVE-2026-39408

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path traversal issue in toSSG allows files to be written outside the configured output directory during static site generation. When using dynamic route parameters via ssgParams, specially...

7.5CVSS0.00532EPSS
Exploits1References3
OSV
OSV
added 2026/04/08 2:42 p.m.1 views

CVE-2026-39408 Hono has a path traversal in toSSG() allows writing files outside the output directory

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path traversal issue in toSSG allows files to be written outside the configured output directory during static site generation. When using dynamic route parameters via ssgParams, specially...

5.9CVSS6AI score0.00532EPSS
Exploits1References5
Rows per page
Query Builder