CVE-2017-16085

Summary

tinyserver2 is a webserver for static files. tinyserver2 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.

Affected Software

VendorProductVersion RangeStatus
HackerOnetinyserver2 node module<=0.5.2affected

Weaknesses

  • CWE-22: Path Traversal (CWE-22)

ADP Enrichment

CVE Program Container

Additional References

References