CVE-2023-46497

Published: 2023-12-08T20:15Z

Last Modified: 2024-11-21T08:28Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information via a crafted request to the mkdirSync function in the folderCreate/createFolder.js endpoint. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt