Lucene search
Veracode Vulnerability DatabaseVERACODE:40520HistoryMay 15, 2023 - 4:52 a.m.
Path Traversal
2023-05-1504:52:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
m.static
path traversal
improper path sanitization
requestfile parameter
requestlistener function
index.js
0.001 Low
EPSS
Percentile
38.1%
m.static is vulnerable to Path Traversal. The vulnerability exists due to the improper path sanitization in the requestFile parameter in the requestListener function of index.js, which allows an attacker to access files outside the expected directory through relative paths.
Related
nvd
nvd
CVE-2023-26126
2023-05-10 05:15:08
cvelist
cvelist
CVE-2023-26126
2023-05-10 05:00:01
cve
cve
CVE-2023-26126
2023-05-10 05:15:08
osv
osv
m.static Directory Traversal vulnerability
2023-05-10 06:30:27
prion
prion
Directory traversal
2023-05-10 05:15:00
github
github
m.static Directory Traversal vulnerability
2023-05-10 06:30:27