localhost-now (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package localhost-now, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2018-3729 — CVSS 7.5 (high): localhost-now node module suffers from a Path Traversal vulnerability due to lack of validation of file, which allows a malicious user to…
CVE-2019-5416 — CVSS 7.5 (high): A path traversal vulnerability in localhost-now npm package version 1.0.2 allows the attackers to read content of arbitrary files on the…