Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-3hvm-hgpw-rx4j

GitHub Security Advisory

Path Traversal in knightjs

✓ GitHub Reviewed HIGH Has CVE
View on GitHub

Advisory Details

All versions of `knightjs` are vulnerable to Path Traversal.

This vulnerability allows an attacker to read content of arbitrary files on the server due to lack of input validation.

## Recommendation

As there is currently no fix for this module we recommend not using this module in production environments.

Affected Packages

npm knightjs
Affected versions: 0 (last affected: 0.0.1)

Related CVEs

CVE-2018-16475

Key Information

GHSA ID
GHSA-3hvm-hgpw-rx4j
Published
November 6, 2018 11:11 PM
Last Modified
September 12, 2023 8:40 PM
CVSS Score
7.5 /10
Primary Ecosystem
npm
Primary Package
knightjs
GitHub Reviewed
✓ Yes

Dataset

Last updated: July 12, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.