static-server@2.0.3 vulnerabilities

A simple http server to serve static resource files from a local directory.

Direct Vulnerabilities

Known vulnerabilities in the static-server package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Directory Traversal

Affected versions of this package are vulnerable to Directory Traversal due to improper input sanitization passed via the validPath function of server.js.

How to fix Directory Traversal?

There is no fixed version for static-server.

*