MEDIUM
Send Project
CVE published 2017-01-23
CVE-2015-8859
CVE-2015-8859 is a medium-severity information disclosure issue in the Node.js send package. According to the NVD record, versions before 0.11.1 are affected, and an attacker may be able to obtain the root path through unspecified vectors. The available record does not describe a more precise attack path, so remediation should focus on upgrading to a fixed release and validating that any dependent applica [truncated]