Medium severity4.9NVD Advisory· Published May 31, 2018· Updated Jun 17, 2026
CVE-2016-10528
CVE-2016-10528
Description
restafary is a REpresentful State Transfer API for Creating, Reading, Using, Deleting files on a server from the web. Restafary before 1.6.1 is able to set up a root path, which should only allow it to run inside of that root path it specified.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
restafarynpm | < 1.6.1 | 1.6.1 |
Affected products
2- HackerOne/restafary node modulev5Range: <1.6.1
Patches
Vulnerability mechanics
References
4- nodesecurity.io/advisories/89nvdExploitThird Party Advisory
- github.com/advisories/GHSA-xg5r-8j97-2wrjghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-10528ghsaADVISORY
- www.npmjs.com/advisories/89ghsaWEB
News mentions
0No linked articles in our index yet.