QID 997142
Date Published: 2024-02-07
QID 997142: NodeJs (Npm) Security Update for stimulsoft-dashboards-js (GHSA-gfqf-9w98-7jmx)
Directory Traversal vulnerability in Stimulsoft GmbH Stimulsoft Dashboard.JS before v.2024.1.3 allows a remote attacker to execute arbitrary code via a crafted payload to the fileName parameter of the Save function.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Github security advisory GHSA-gfqf-9w98-7jmx for updates and patch information.
Vendor References
- GHSA-gfqf-9w98-7jmx -
github.com/advisories/GHSA-gfqf-9w98-7jmx
CVEs related to QID 997142
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| GHSA-gfqf-9w98-7jmx | stimulsoft-dashboards-js |
|