NextGuard
UNKNOWNCVE-2019-5415

Path Traversal in serve

Platform

nodejs

Component

serve

Fixed in

7.0.0

View on NVD

Versions of `serve` prior to 7.0.1 are vulnerable to Path Traversal. Explicitly ignored folders can be accessed through if the path contains a `/./`, which allows attackers to access hidden folders and files. ## Recommendation Upgrade to version 7.0.1 or later.

How to fix

Actualice la versión de `serve` a la versión 7.0.1 o superior. Esto corregirá la vulnerabilidad en el manejo de archivos y directorios ignorados, impidiendo que un atacante acceda a recursos no permitidos.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free