jqueryFileTree vulnerable to Directory Traversal

Description

jqueryFileTree 2.1.5 and older is vulnerable to Directory Traversal

Recommendation

No fix is available yet. Followings are affected versions:

• <= 2.1.5

References

• GHSA-p739-9479-5wr2
• packetstormsecurity.com
• CVE-2017-1000170
• CWE-22
• CAPEC-310
• OWASP 2021-A1
• OWASP 2021-A6

Related Issues

• Mammoth is vulnerable to Directory Traversal - CVE-2025-11849
• Directory Traversal in datachannel-client - CVE-2017-16121
• Directory Traversal in fbr-client - CVE-2017-16217
• Directory Traversal in hostr - CVE-2017-16029

You might also like:

Apache and Express Path Traversal plus Nginx Restriction Bypass Tests with SmartScanner

10 Secure Coding Best Practices to Follow in Every Project

Update Cheat Sheet for Developers

Tags:

npm

jqueryfiletree