0.004 Low
EPSS
Percentile
75.2%
Versions of localhost-now before 1.0.2 are vulnerable to path traversal. This allows a remote attacker to read the content of an arbitrary file.
localhost-now
Update to version 1.0.2 or later.
github.com/advisories/GHSA-2gjg-5x33-mmp2
github.com/DCKT/localhost-now/commit/30b004c7f145d677df8800a106c2edc982313995#diff-b9cfc7f2cdf78a7f4b91a753d10865a2
hackerone.com/reports/312889
nvd.nist.gov/vuln/detail/CVE-2018-3729
www.npmjs.com/advisories/582