Vite before v2.9.13 vulnerable to directory traversal via crafted URL to victim's service
Moderate severity
GitHub Reviewed
Published
Aug 19, 2022
to the GitHub Advisory Database
•
Updated Aug 2, 2024
Description
Published by the National Vulnerability Database
Aug 18, 2022
Published to the GitHub Advisory Database
Aug 19, 2022
Reviewed
Aug 30, 2022
Last updated
Aug 2, 2024
Vite before v2.9.13 was discovered to allow attackers to perform a directory traversal via a crafted URL to the victim's service.
References