2025-11-21 Daily Vulns
NEW:
| CVE | vendor-product | description | metric | Referenceurl | title | GithubURL | |
|---|---|---|---|---|---|---|---|
| CVE-2025-65025 | esm-dev - esm.sh | esm.sh is a nobuild content delivery network(CDN) for modern web development. Prior to version 136, the esm.sh CDN service is vulnerable to path traversal during NPM package tarball extraction. An attacker can craft a malicious NPM package containing specially crafted file paths (e.g., package/../../tmp/evil.js). When esm.sh downloads and extracts this package, files may be written to arbitrary locations on the server, escaping the intended extraction directory. This issue has been patched in version 136. | CVSS3.1: 8.2 - HIGH | 0 1 | Exploitation: pocAutomatable: yesTechnical Impact: partial | esm.sh CDN service has arbitrary file write via tarslip | github |
This post is licensed under CC BY 4.0 by the author.