Description
Vitejs Vite before v2.9.13 was discovered to allow attackers to perform a directory traversal via a crafted URL to the victim's service.
Remediation
References
https://github.com/vitejs/vite/issues/8498
https://github.com/vitejs/vite/releases/tag/v2.9.13
https://github.com/vitejs/vite/releases/tag/v3.0.0-beta.4
Related Vulnerabilities
CVE-2022-25349 Vulnerability in maven package org.webjars.npm:materialize-css
CVE-2022-42466 Vulnerability in maven package org.apache.isis.viewer:isis-viewer-wicket-ui
CVE-2023-41886 Vulnerability in maven package org.openrefine:database
CVE-2018-3754 Vulnerability in npm package query-mysql
CVE-2021-43138 Vulnerability in maven package org.webjars.bowergithub.caolan:async