Lucene search

K

GoogleOSV:GHSA-HQV3-QQ72-78CV

HistorySep 02, 2021 - 5:09 p.m.

Directory Traversal in startserver

2021-09-0217:09:40

Google

osv.dev

6

startserver

vulnerability

directory traversal

missing sanitization

software

EPSS

0.003

Percentile

69.1%

All versions of package startserver are vulnerable to Directory Traversal due to missing sanitization.

References

github.com/xudafeng/startserver

github.com/xudafeng/startserver/blob/bef0c4e4d21da42a40ce87cf25fd54ac8d8cb2d8/lib/index.js%23L71

nvd.nist.gov/vuln/detail/CVE-2021-23430

snyk.io/vuln/SNYK-JS-STARTSERVER-1296388

EPSS

0.003

Percentile

69.1%

Related for OSV:GHSA-HQV3-QQ72-78CV

cve1 nvd1 github1 cvelist1 prion1