Rollup-plugin-serve Project Rollup-plugin-serve — known CVE vulnerabilities
Every CVE whose affected-product data names Rollup-plugin-serve Project Rollup-plugin-serve, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2020-7684 — CVSS 7.5 (high): This affects all versions of package rollup-plugin-serve. There is no path sanitization in readFile operation.