web-node-server is vulnerable to Path Traversal. The vulnerability is due to to a lack of sanitization of relative file paths in the start
function of nodeserver.js
which allows an attacker to write arbitrary files outside the expected directory.
CPE | Name | Operator | Version |
---|---|---|---|
web-node-server | eq | 0.1.0 | |
web-node-server | le | 0.0.9 | |
web-node-server | eq | 0.1.0 | |
web-node-server | le | 0.0.9 |