Crud-file-server Project Crud-file-server — known CVE vulnerabilities
Every CVE whose affected-product data names Crud-file-server Project Crud-file-server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-3733 — CVSS 7.5 (high): crud-file-server node module before 0.9.0 suffers from a Path Traversal vulnerability due to incorrect validation of url, which allows a…
CVE-2018-3726 — CVSS 6.1 (medium): crud-file-server node module before 0.8.0 suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names.