mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
1000 B
1000 B
CVE-2024-32869
&color=brighgreen)
Description
Hono is a Web application framework that provides support for any JavaScript runtime. Prior to version 4.2.7, when using serveStatic with deno, it is possible to traverse the directory where main.ts is located. This can result in retrieval of unexpected files. Version 4.2.7 contains a patch for the issue.
POC
Reference
- https://github.com/honojs/hono/security/advisories/GHSA-3mpf-rcc7-5347
- https://github.com/honojs/hono/security/advisories/GHSA-3mpf-rcc7-5347
Github
No PoCs found on GitHub currently.