localhost-now node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
7.5CVSS
7.3AI Score
0.004EPSS
A path traversal vulnerability in localhost-now npm package version 1.0.2 allows the attackers to read content of arbitrary files on the remote server.
7.5CVSS
7.4AI Score
0.009EPSS