High severity7.5NVD Advisory· Published Jun 7, 2018· Updated Jun 17, 2026
CVE-2017-16198
CVE-2017-16198
Description
ritp is a static web server. ritp is vulnerable to a directory traversal issue whereby an attacker can gain access to the file system by placing ../ in the URL. Access is restricted to files with a file extension, so files such as /etc/passwd are not accessible.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ritpnpm | <= 1.0.5 | — |
Affected products
1Patches
Vulnerability mechanics
References
5- github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/ritpnvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-gf7h-vg5v-cch6ghsaADVISORY
- nodesecurity.io/advisories/432nvdThird Party Advisory
- nvd.nist.gov/vuln/detail/CVE-2017-16198ghsaADVISORY
- www.npmjs.com/advisories/432ghsaWEB
News mentions
0No linked articles in our index yet.