VYPR

npm package

fbr-client

pkg:npm/fbr-client

Vulnerabilities (1)

  • CVE-2017-16217HigJun 7, 2018
    affected <= 1.0.3

    fbr-client sends files through sockets via socket.io and webRTC. fbr-client is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.