CVE-2019-5444

Summary

Path traversal vulnerability in version up to v1.1.3 in serve-here.js npm module allows attackers to list any file in arbitrary folder.

Affected Software

VendorProductVersion RangeStatus
n/aserve-here.js npm moduleAffected: up to v1.1.3affected
n/aserve-here.js npm moduleFixed Version: 1.2.0affected

Weaknesses

  • CWE-22: Path Traversal (CWE-22)

ADP Enrichment

CVE Program Container

Additional References

References