RSS   Vulnerabilities for 'Angular-http-server'   RSS

2018-06-06
 
CVE-2018-3713

CWE-22
 

 
angular-http-server node module suffers from a Path Traversal vulnerability due to lack of validation of possibleFilename, which allows a malicious user to read content of any file with known path.

 


Copyright 2018, cxsecurity.com

 

Back to Top