Localhost-Now Project: Security Vulnerabilities
A path traversal vulnerability in localhost-now npm package version 1.0.2 allows the attackers to read content of arbitrary files on the remote server.
CVSS Score
7.5
EPSS Score
0.006
Published
2019-03-21
localhost-now node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to read content of any file with known path.
CVSS Score
7.5
EPSS Score
0.008
Published
2018-06-07