This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://snyk.io/vuln/SNYK-JS-FASTHTTP-572892 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2020-07-25T08:40:16.391467Z
Updated: 2024-09-17T02:46:44.159Z
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7687
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-07-25T09:15:12.087
Modified: 2020-07-27T14:25:16.767
Link: CVE-2020-7687
Redhat
No data.