← Back

Harp

harp

Vendor: Harpjs • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-5438
1Harpjs
1Harp
Nov 21, 2024
May 10, 2019
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Path traversal using symlink in npm harp module versions <= 0.29.0.
CVE-2019-5437
1Harpjs
1Harp
Nov 21, 2024
May 10, 2019
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and no fix was applied t...Show more
Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and no fix was applied to our knowledge.Show less