CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2017-16125
https://notcve.org/view.php?id=CVE-2017-16125
rtcmulticonnection-client is a signaling implementation for RTCMultiConnection.js, a multi-session manager. rtcmulticonnection-client is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. rtcmulticonnection-client es una implementación de señalización para RTCMultiConnection.js, un gestor multisesión. rtcmulticonnection-client es vulnerable a un problema de salto de directorio que otorga a un atacante acceso al sistema de archivos colocando "../" en la URL. • https://github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/rtcmulticonnection-client https://nodesecurity.io/advisories/385 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •