@nubosoftware/node-static Project ≫ @nubosoftware/node-static

1 vulnerability found

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

7.5

CVE-2023-26111

Exploit

EPSS 1.82%
Published 06.03.2023 05:15:12
Last modified 05.03.2025 21:15:18

All versions of the package @nubosoftware/node-static; all versions of the package node-static are vulnerable to Directory Traversal due to improper file path sanitization in the startsWith() method in the servePath function.