CVE-2016-10561

EPSS 1.5%CWE-22

Bitty is a development web server tool that functions similar to `python -m SimpleHTTPServer`. Version 0.2.10 has a directory traversal vulnerability that is exploitable via the URL path in GET requests.

Affected products

HackerOne · bitty node module

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://nodesecurity.io/advisories/150