2 matches found
Interpretation Conflict
Overview Affected versions of this package are vulnerable to Interpretation Conflict via a mismatch in path normalization between components. An attacker can gain unauthorized access to restricted resources or perform actions without proper authentication by crafting requests with specially...
Node.js Security Vulnerabilities
Node.js is an open source, cross-platform JavaScript runtime environment. A security vulnerability exists in Node.js versions 20 and 21 that stems from the permissions model's failure to clarify in the documentation that wildcards can only be used as the last character of file paths, potentially...