ecstatic is a simple static file server middleware. Use it with a raw http server, express/connect or on the CLI.
Affected versions of this package are vulnerable to Open Redirect. The package failed to validate redirects, allowing attackers to craft requests that result in an
HTTP 301 redirect to any other domains.
ecstatic to version 2.2.2, 3.3.2, 4.1.2 or higher.
- Mario Casola
- Snyk ID
- 23 Apr, 2019
- 30 Apr, 2019