0.003 Low
EPSS
Percentile
71.6%
resolve-path is vulnerable path traversal attacks. A malicious user can access areas outside of the intended target directory by using a url containing ../.
../
github.com/pillarjs/resolve-path/commit/fe5b8052cafd35fcdafe9210e100e9050b37d2a0
hackerone.com/reports/315760
twitter.com/orange_8361