Hekto Project: Security Vulnerabilities
hekto node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
CVSS Score
7.5
EPSS Score
0.006
Published
2018-06-07
Open redirect in hekto <=0.2.3 when target domain name is used as html filename on server.
CVSS Score
6.1
EPSS Score
0.003
Published
2018-06-01