High severity7.5NVD Advisory· Published May 31, 2018· Updated Jun 17, 2026
CVE-2014-10066
CVE-2014-10066
Description
Versions less than 0.1.4 of the static file server module fancy-server are vulnerable to directory traversal. An attacker can provide input such as ../ to read files outside of the served directory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
fancy-servernpm | < 0.1.4 | 0.1.4 |
Affected products
2- Range: <0.1.4
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-m273-wwfv-h6jpghsaADVISORY
- nodesecurity.io/advisories/9nvdThird Party Advisory
- nvd.nist.gov/vuln/detail/CVE-2014-10066ghsaADVISORY
- en.wikipedia.org/wiki/Directory_traversal_attackghsaWEB
- www.npmjs.com/advisories/9ghsaWEB
News mentions
0No linked articles in our index yet.