RSS   Vulnerabilities for 'Bower'   RSS

2019-09-13
 
CVE-2019-5484

CWE-22
 

 
Bower before 1.8.8 has a path traversal vulnerability permitting file write in arbitrary locations via install command, which allows attackers to write arbitrary files when a malicious package is extracted.

 


Copyright 2024, cxsecurity.com

 

Back to Top