Lucene search
Theia Security Vulnerabilities - 2020
cve
In Eclipse Theia versions 0.3.9 through 0.15.0, one of the default pre-packaged Theia extensions is "Mini-Browser", published as "@theia/mini-browser" on npmjs.com. This extension, for its own needs, exposes a HTTP endpoint that allows to read the content of files on the host's filesystem, given th...
8.1CVSS
7.8AI Score
0.003EPSS
2020-03-10 03:15 PM
28