CVE-2018-3771
CVE-2018-3771
An XSS in statics-server <= 0.0.9 can be used via injected iframe in the filename when statics-server displays directory index in the browser.
Affected products
HackerOne · statics-serverWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://hackerone.com/reports/355458