mcstatic directory traversal vulnerability
High severity
GitHub Reviewed
Published
Feb 7, 2019
to the GitHub Advisory Database
•
Updated Sep 12, 2023
Description
Published to the GitHub Advisory Database
Feb 7, 2019
Reviewed
Jun 16, 2020
Last updated
Sep 12, 2023
A server directory traversal vulnerability was found on node module mcstatic <=0.0.20 that would allow an attack to access sensitive information in the file system by appending slashes in the URL path.
References