pillarjs/resolve-path

Releases10

Frequency5 months 6 days

Last Release over 8 years ago

Stars34

Resolve a relative path against a root path with validation

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-3732 ↗	Jun 7, 2018Thursday, 7 June 2018, 02:29	7.5 HIGH	5 MEDIUM
resolve-path node module before 1.4.0 suffers from a Path Traversal vulnerability due to lack of validation of paths with certain special characters, which allows a malicious user to read content of any file with known path.