High severityOSV Advisory· Published Feb 18, 2019· Updated Aug 4, 2024
CVE-2019-8903
CVE-2019-8903
Description
index.js in Total.js Platform before 3.2.3 allows path traversal.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
total.jsnpm | < 3.2.3 | 3.2.3 |
Affected products
2Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-3q32-j57w-q4w7ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-8903ghsaADVISORY
- blog.certimetergroup.com/it/articolo/security/total.js-directory-traversal-cve-2019-8903ghsax_refsource_MISCWEB
- github.com/totaljs/framework/commit/c37cafbf3e379a98db71c1125533d1e8d5b5aef7ghsax_refsource_MISCWEB
- github.com/totaljs/framework/commit/de16238d13848149f5d1dae51f54e397a525932bghsax_refsource_MISCWEB
- www.npmjs.com/advisories/1026ghsaWEB
News mentions
0No linked articles in our index yet.