CVE-2024-43800

CVSS V2 None CVSS V3 None
Description
serve-static serves static files. serve-static passes untrusted user input - even after sanitizing it - to redirect() may execute untrusted code. This issue is patched in serve-static 1.16.0.
Overview
  • CVE ID
  • CVE-2024-43800
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-09-10T14:50:06.043Z
  • Last Modified Date
  • 2024-09-10T19:08:02.494Z
History
Created Old Value New Value Data Type Notes
2024-09-11 13:17:44 Added to TrackCVE