In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsserve-static is a Node.js module available through the npm registry.
Affected versions of this package are vulnerable to Information Exposure. The roots path would be exposed via the express.static
, res.sendfile
, and res.sendFile
methods.
This was deemed not a vulnerability.
Upgrade serve-static
to version 1.8.1 or higher.