CVE-2018-3744
Published
CVSS v3
9.8
CRITICAL
CVSS v2
5
MEDIUM
Affected
1
PROJECT
Description
The html-pages node module contains a path traversal vulnerabilities that allows an attacker to read any file from the server with cURL.
Simple development http server for file serving and directory listing made by a Designer. Use it for hacking your HTML/JavaScript/CSS files, but not for deploying your final site.
GitHub