6 matches found
GHSA-HQV3-QQ72-78CV Directory Traversal in startserver
All versions of package startserver are vulnerable to Directory Traversal due to missing sanitization...
Directory Traversal in startserver
All versions of package startserver are vulnerable to Directory Traversal due to missing sanitization...
CVE-2021-23430
CVE-2021-23430 affects the Node.js package startserver. All versions are vulnerable to Directory Traversal due to missing input sanitization in the implementation (notably in the index.js logic around L71). This can enable an attacker to access files outside the intended directory, potentially ex...
CVE-2021-23430
All versions of package startserver are vulnerable to Directory Traversal due to missing sanitization...
startserver 安全漏洞
startserver is an open source http server. A security vulnerability exists in startserver, which stems from the application's lack of antivirus handling and vulnerability to directory traversal attacks...
Directory Traversal
Overview startserver is a Yet another http server Affected versions of this package are vulnerable to Directory Traversal due to missing sanitization. PoC curl --path-as-is --url "http://localhost:8080/../../../../etc/passwd" Details A Directory Traversal attack also known as path traversal aims ...