RSS   Vulnerabilities for 'Resolve-path'   RSS

2018-06-06
 
CVE-2018-3732

CWE-22
 

 
resolve-path node module before 1.4.0 suffers from a Path Traversal vulnerability due to lack of validation of paths with certain special characters, which allows a malicious user to read content of any file with known path.

 


Copyright 2024, cxsecurity.com

 

Back to Top