Описание
Information Exposure on Case Insensitive File Systems in serve
Versions of serve before 7.0.0 are vulnerable to information exposure, bypassing the ignore security control, but only on case insensitive file systems.
Recommendation
Update to version 7.0.0 or later.
Пакеты
Наименование
serve
npm
Затронутые версииВерсия исправления
< 7.0.0
7.0.0
Связанные уязвимости
CVSS3: 5.3
nvd
больше 7 лет назад
Information exposure through directory listings in serve 6.5.3 allows directory listing and file access even when they have been set to be ignored.