Описание
Path Traversal in knightjs
All versions of knightjs are vulnerable to Path Traversal.
This vulnerability allows an attacker to read content of arbitrary files on the server due to lack of input validation.
Recommendation
As there is currently no fix for this module we recommend not using this module in production environments.
Пакеты
Наименование
knightjs
npm
Затронутые версииВерсия исправления
<= 0.0.1
Отсутствует
Связанные уязвимости
CVSS3: 7.5
nvd
больше 7 лет назад
A Path Traversal in Knightjs versions <= 0.0.1 allows an attacker to read content of arbitrary files on a remote server.