Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Crud-file-server Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-3733 1 Crud-file-server Project 1 Crud-file-server 2023-02-28 5.0 MEDIUM 7.5 HIGH
crud-file-server node module before 0.9.0 suffers from a Path Traversal vulnerability due to incorrect validation of url, which allows a malicious user to read content of any file with known path.
CVE-2018-3726 1 Crud-file-server Project 1 Crud-file-server 2023-01-30 4.3 MEDIUM 6.1 MEDIUM
crud-file-server node module before 0.8.0 suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names.