Advisories for Npm/Html-Pages package

A XSS vulnerability allows malicious Javascript code to be executed in the user's browser due to the absence of sanitization of the paths before rendering.

The html-pages node module contains a path traversal vulnerabilities that allows an attacker to read any file from the server with cURL.