Headline
GHSA-v834-rhv4-65m3: static-server Path Traversal vulnerability
All versions of the package static-server are vulnerable to Directory Traversal due to improper input sanitization passed via the validPath function of server.js.
static-server Path Traversal vulnerability
High severity GitHub Reviewed Published Oct 3, 2023 to the GitHub Advisory Database • Updated Oct 4, 2023
Related news
CVE-2023-26152: Path traversal vulnerability in [email protected]
All versions of the package static-server are vulnerable to Directory Traversal due to improper input sanitization passed via the validPath function of server.js.