Severity: high

    Directory Traversal

    serve

    Overview

    Versions of serve before 7.1.3 are vulnerable to Directory Traversal. File paths are not sanitized leading to unauthorized access of system files.

    Remediation

    Upgrade to version 7.1.3 or later

    Resources

    Have content suggestions? Visit npmjs.com/support.

    Advisory timeline

    1. published

      Advisory Published
      Apr 2nd, 2019
    2. reported

      Reported by tungpun
      May 29th, 2018