Skip to main content

Harp

2 CVEs product

Monthly

CVE-2019-5438 npm MEDIUM POC PATCH This Month

Path traversal using symlink in npm harp module versions <= 0.29.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Path Traversal Harp
NVD
CVSS 3.1
5.3
EPSS
1.5%
CVE-2019-5437 npm MEDIUM POC PATCH This Month

Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Information Disclosure Harp
NVD
CVSS 3.0
5.3
EPSS
1.3%
EPSS 1% CVSS 5.3
MEDIUM POC PATCH This Month

Path traversal using symlink in npm harp module versions <= 0.29.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Path Traversal Harp
NVD
EPSS 1% CVSS 5.3
MEDIUM POC PATCH This Month

Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Information Disclosure Harp
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy