CVE-2023-46493 | EverShop NPM up to 1.0.0-rc.7 Request fileBrowser/browser.js readDirSync path traversal

CVE-2023-46493 | EverShop NPM up to 1.0.0-rc.7 Request fileBrowser/browser.js readDirSync path traversal

A vulnerability classified as critical was found in EverShop NPM up to 1.0.0-rc.7. This vulnerability affects the function readDirSync of the file fileBrowser/browser.js of the component Request Handler. The manipulation leads to path traversal. This vulnerability was named CVE-2023-46493. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.