[Secure-testing-team] Bug#775843: node-serve-static: CVE-2015-1164

Moritz Muehlenhoff jmm at inutil.org
Tue Jan 20 16:22:53 UTC 2015


Package: node-serve-static
Severity: grave
Tags: security
Justification: user security hole

Hi,
please see https://nodesecurity.io/advisories/serve-static-open-redirect

Cheers,
        Moritz



More information about the Secure-testing-team mailing list