CVE-2017-16173
CVE-2017-16173
utahcityfinder constructs lists of Utah cities with a certain prefix. utahcityfinder is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Affected products
HackerOne · utahcityfinder node moduleWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →