Hackerone Serve Node Module
2 CVEs affecting Hackerone Serve Node Module. Latest disclosed: 2018-06-07. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-3718 | | 2018-06-07 | serve node module suffers from Improper Handling of URL Encoding by permitting access to ignored files if a filename is URL encoded. | |
CVE-2018-3712 | | 2018-06-07 | serve node module before 6.4.9 suffers from a Path Traversal vulnerability due to not handling %2e (.) and %2f (/) and allowing them in paths, which allows a m… |