VYPR

npm package

hostr

pkg:npm/hostr

Vulnerabilities (1)

  • CVE-2017-16029HigJun 4, 2018
    affected < 2.3.6fixed 2.3.6

    hostr is a simple web server that serves up the contents of the current directory. There is a directory traversal vulnerability in hostr 2.3.5 and earlier that allows an attacker to read files outside the current directory by sending `../` in the url path for GET requests.