This affects all versions of package rollup-plugin-dev-server. There is no path sanitization in readFile operation inside the readFileFromContentBase function.
References
Link | Resource |
---|---|
https://snyk.io/vuln/SNYK-JS-ROLLUPPLUGINDEVSERVER-590124 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: snyk
Published: 2020-07-25T00:00:00
Updated: 2020-07-25T08:40:12
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7686
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-07-25T09:15:12.027
Modified: 2020-07-27T14:25:12.143
Link: CVE-2020-7686
JSON object: View
Redhat Information
No data.
CWE