GMS-2018-24: Path Traversal

February 26, 2018

Hekto contains a path traversal vulnerability. It allows reading arbitrary files from the remote server.

References

hackerone.com/reports/311218

Detect and mitigate GMS-2018-24 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →