VulnerableCode Package Details - pkg:npm/serve@6.5.2

Search for packages

Vulnerability	Summary	Fixed by
VCID-b1jn-wqse-wqdk Aliases: CVE-2019-5415 GHSA-v588-qcp3-jv46	Path Traversal in serve	7.0.0 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-gsha-1uc8-9fdb Aliases: GHSA-cpgr-wmr9-qxv4 GMS-2020-774	Cross-Site Scripting in serve	10.0.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-r6cv-1gqj-27dv Aliases: GHSA-48gc-5j93-5cfq GMS-2020-773	Path Traversal in serve	10.1.2 Affected by 0 other vulnerabilities.
VCID-y2zp-h76y-kkcj Aliases: GHSA-xw79-hhv6-578c GMS-2020-776	Cross-Site Scripting in serve	10.0.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-b1jn-wqse-wqdk
Aliases:
CVE-2019-5415
GHSA-v588-qcp3-jv46

Path Traversal in serve

7.0.0
Affected by 3 other vulnerabilities.

VCID-gsha-1uc8-9fdb
Aliases:
GHSA-cpgr-wmr9-qxv4
GMS-2020-774

Cross-Site Scripting in serve

10.0.2
Affected by 1 other vulnerability.

VCID-r6cv-1gqj-27dv
Aliases:
GHSA-48gc-5j93-5cfq
GMS-2020-773

Path Traversal in serve

10.1.2
Affected by 0 other vulnerabilities.

VCID-y2zp-h76y-kkcj
Aliases:
GHSA-xw79-hhv6-578c
GMS-2020-776

Cross-Site Scripting in serve

10.0.2
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
VCID-t7uu-35ze-3uas	Byass due to validation before canonicalization in serve	GHSA-wm7q-rxch-43mx GMS-2020-775
VCID-xkwm-jspu-77be		CVE-2018-3718 GHSA-5rc4-8qqh-vq7f

Vulnerability

Summary

Aliases

VCID-t7uu-35ze-3uas

Byass due to validation before canonicalization in serve

GHSA-wm7q-rxch-43mx
GMS-2020-775

VCID-xkwm-jspu-77be

CVE-2018-3718
GHSA-5rc4-8qqh-vq7f

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T16:44:19.775993+00:00	GitLab Importer	Affected by	VCID-r6cv-1gqj-27dv	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/serve/GMS-2020-773.yml	38.6.0
2026-06-13T16:44:14.371871+00:00	GitLab Importer	Affected by	VCID-gsha-1uc8-9fdb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/serve/GMS-2020-774.yml	38.6.0
2026-06-13T16:44:11.663762+00:00	GitLab Importer	Affected by	VCID-y2zp-h76y-kkcj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/serve/GMS-2020-776.yml	38.6.0
2026-06-13T15:07:54.290362+00:00	GitLab Importer	Fixing	VCID-t7uu-35ze-3uas	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/serve/GMS-2020-775.yml	38.6.0
2026-06-13T06:23:51.540553+00:00	GHSA Importer	Fixing	VCID-xkwm-jspu-77be	https://github.com/advisories/GHSA-5rc4-8qqh-vq7f	38.6.0
2026-06-12T17:09:20.396290+00:00	GitLab Importer	Affected by	VCID-b1jn-wqse-wqdk	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/serve/CVE-2019-5415.yml	38.6.0
2026-06-12T15:40:37.621567+00:00	GitLab Importer	Fixing	VCID-xkwm-jspu-77be	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/serve/CVE-2018-3718.yml	38.6.0
2026-06-12T08:04:30.334677+00:00	GithubOSV Importer	Fixing	VCID-xkwm-jspu-77be	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/08/GHSA-5rc4-8qqh-vq7f/GHSA-5rc4-8qqh-vq7f.json	38.6.0
2026-06-12T08:01:13.758821+00:00	GithubOSV Importer	Fixing	VCID-t7uu-35ze-3uas	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/09/GHSA-wm7q-rxch-43mx/GHSA-wm7q-rxch-43mx.json	38.6.0
2026-06-12T07:19:04.211809+00:00	Npm Importer	Fixing	VCID-xkwm-jspu-77be	https://github.com/nodejs/security-wg/blob/main/vuln/npm/389.json	38.6.0
2026-06-11T20:26:31.984915+00:00	GHSA Importer	Fixing	VCID-t7uu-35ze-3uas	https://github.com/advisories/GHSA-wm7q-rxch-43mx	38.6.0