Description
Vitejs Vite before v2.9.13 was discovered to allow attackers to perform a directory traversal via a crafted URL to the victim's service.
Remediation
References
https://github.com/vitejs/vite/issues/8498
https://github.com/vitejs/vite/releases/tag/v2.9.13
https://github.com/vitejs/vite/releases/tag/v3.0.0-beta.4
Related Vulnerabilities
CVE-2023-28709 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2011-4905 Vulnerability in maven package activemq:activemq-core
CVE-2020-7720 Vulnerability in npm package node-forge
CVE-2012-5785 Vulnerability in maven package org.apache.axis2:axis2
CVE-2017-16138 Vulnerability in maven package org.webjars:mime