RSS   Podatności dla 'Http-file-server'   RSS

2019-07-30
 
CVE-2019-5458

CWE-79
 
 
Cross-site scripting (XSS) vulnerability in http-file-server (all versions) allows an attacker with access to the server file system to execute arbitrary JavaScript code in victim's browser.

 
2019-07-15
 
CVE-2019-5447

CWE-22
 
 
A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows attackers to list files in arbitrary folders.

 

Copyright 2024, cxsecurity.com

 

Back to Top