How severe is CVE-2018-16493?

CVE-2018-16493 has a CVSS v3 score of 7.5 (HIGH).

CVE-2018-16493

Name: static-resource-server
Author: static-resource-server_project

7.5HIGH

A path traversal vulnerability was found in module static-resource-server 1.7.2 that allows unauthorized read access to any file on the server by appending slashes in the URL.

Опубликовано: 2/1/2019Обновлено: 11/21/2024

Описание

A path traversal vulnerability was found in module static-resource-server 1.7.2 that allows unauthorized read access to any file on the server by appending slashes in the URL.

ИИ-АнализНа базе ИИ

Затронутые продукты

static-resource-server_projectstatic-resource-server

1.7.2

Ссылки

https://hackerone.com/reports/432600
ExploitThird Party Advisory
https://hackerone.com/reports/432600
ExploitThird Party Advisory