2 matches found
CVE-2019-5437
Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are
CVE-2019-5438
Path traversal using symlink in npm harp module versions