[Secure-testing-team] Bug#775843: node-serve-static: CVE-2015-1164
Moritz Muehlenhoff
jmm at inutil.org
Tue Jan 20 16:22:53 UTC 2015
Package: node-serve-static
Severity: grave
Tags: security
Justification: user security hole
Hi,
please see https://nodesecurity.io/advisories/serve-static-open-redirect
Cheers,
Moritz
More information about the Secure-testing-team
mailing list