CVE-2020-7686

Path Traversal in npm/rollup-plugin-dev-server

Identifiers

CVE-2020-7686

Package Slug

npm/rollup-plugin-dev-server

Vulnerability

Path Traversal

Description

This affects all versions of package rollup-plugin-dev-server. There is no path sanitization in the readFile operation inside the readFileFromContentBase function.

Affected Versions

All versions

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-07-29

source