Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nodejs_ bl4deNODEJS:591
HistoryApr 24, 2018 - 3:48 p.m.

Path Traversal

2018-04-2415:48:20
_ bl4de
www.npmjs.com
24

EPSS

0.003

Percentile

70.5%

JSON

Overview

Versions of stattic before 0.3.0 are vulnerable to path traversal allowing a remote attacker to read arbitrary files with any extension from the server that users stattic.

Recommendation

Update to version 0.3.0 or later.

References

Related

veracode 1
github 1
cvelist 1
prion 1
hackerone 1
osv 1
cve 1
nvd 1
veracode
veracode
Path Traversal
2018-03-08 10:41:55
github
github
Path Traversal in stattic
2018-07-18 21:20:15
cvelist
cvelist
CVE-2018-3734
2018-05-29 20:00:00
prion
prion
Path traversal
2018-05-29 20:29:00
hackerone
hackerone
Node.js third-party modules: [stattic] Inproper path validation leads to Path Traversal and allows to read arbitrary files with any extension(s)
2018-02-23 12:44:58
osv
osv
Path Traversal in stattic
2018-07-18 21:20:15
cve
cve
CVE-2018-3734
2018-05-29 20:29:02
nvd
nvd
CVE-2018-3734
2018-05-29 20:29:02

EPSS

0.003

Percentile

70.5%

JSON
Related for NODEJS:591
veracode1github1cvelist1prion1hackerone1osv1cve1nvd1