Количество 2
Количество 2
CVE-2020-15779
больше 5 лет назад
A Path Traversal issue was discovered in the socket.io-file package through 2.0.31 for Node.js. The socket.io-file::createFile message uses path.join with ../ in the name option, and the uploadDir and rename options determine the path.
CVSS3: 7.5
EPSS: Низкий
GHSA-9h4g-27m8-qjrg
больше 5 лет назад
Path Traversal in socket.io-file
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-15779 A Path Traversal issue was discovered in the socket.io-file package through 2.0.31 for Node.js. The socket.io-file::createFile message uses path.join with ../ in the name option, and the uploadDir and rename options determine the path. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| GHSA-9h4g-27m8-qjrg Path Traversal in socket.io-file | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
Уязвимостей на страницу
20