Search for packages
| purl | pkg:npm/harp@0.8.7 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8rur-pahm-2ufg
Aliases: CVE-2019-5438 GHSA-6fmm-47qc-p4m4 |
Path traversal using symlink in npm harp module. |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
VCID-qk98-y86c-y7dy
Aliases: CVE-2019-5437 GHSA-46hv-7769-j7rx |
Information Exposure Through Directory Listing Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules. |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-05-31T09:56:17.141609+00:00 | GitLab Importer | Affected by | VCID-qk98-y86c-y7dy | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/harp/CVE-2019-5437.yml | 38.6.0 |
| 2026-05-31T09:56:16.366109+00:00 | GitLab Importer | Affected by | VCID-8rur-pahm-2ufg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/harp/CVE-2019-5438.yml | 38.6.0 |