Lucene search

K

Veracode Vulnerability DatabaseVERACODE:6636

HistoryJun 07, 2018 - 8:32 a.m.

Directory Traversal

2018-06-0708:32:29

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

3

EPSS

0.004

Percentile

74.8%

sspa is vulnerable to directory traversal attacks. It is possible by requesting a URL such as /..%2f..%2fetc/passwd to get sensitive information.

References

github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/sspa

github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/sspa

nodesecurity.io/advisories/463

EPSS

0.004

Percentile

74.8%

Related for VERACODE:6636

cvelist1 osv1 nodejs1 github1 prion1 cve1 nvd1