Simplehttpserver Project: >> Simplehttpserver >> 0.2.1 Security Vulnerabilities
A Path Traversal in simplehttpserver versions <=0.2.1 allows to list any file in another folder of web root.
CVSS Score
5.3
EPSS Score
0.002
Published
2018-12-04
simplehttpserver node module suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names.
CVSS Score
5.4
EPSS Score
0.003
Published
2018-06-07