VYPR

Chartmuseum

by Helm

Source repositories

CVEs (1)

  • CVE-2019-1000009Feb 4, 2019
    risk 0.00cvss epss 0.01

    Helm ChartMuseum version >=0.1.0 and < 0.8.1 contains a CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in HTTP API to save charts that can result in a specially crafted chart could be uploaded and saved outside the intended…