CVE-2022-25936

Servst vulnerable to Path Traversal in npm/servst

Identifiers

CVE-2022-25936, GHSA-88v8-v46g-6c9w

Package Slug

npm/servst

Vulnerability

Servst vulnerable to Path Traversal

Description

Versions of the package servst before 2.0.3 is vulnerable to Directory Traversal due to improper sanitization of the filePath variable.

Affected Versions

All versions before 2.0.3

Solution

Upgrade to version 2.0.3 or above.

Last Modified

2023-02-01

source