CVE-2020-7682

Summary

This affects all versions of package marked-tree. There is no path sanitization in the path provided at fs.readFile in index.js.

Affected Software

VendorProductVersion RangeStatus
n/amarked-tree0 < unspecifiedaffected

Weaknesses

  • Directory Traversal

ADP Enrichment

CVE Program Container

Additional References

References