VYPR

npm package

easy-static-server

pkg:npm/easy-static-server

Vulnerabilities (1)

  • CVE-2022-25931HigDec 20, 2022
    affected <= 0.1.1

    All versions of package easy-static-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.