CVE-2024-1163: mapshaper Path Traversal vulnerability

February 13, 2024 (updated November 4, 2024)

Path Traversal in GitHub repository mbloch/mapshaper prior to 0.6.44.

References

github.com/advisories/GHSA-8m36-62rw-9mxw
github.com/mbloch/mapshaper
github.com/mbloch/mapshaper/commit/7437d903c0a87802c3751fc529d2de7098094c72
huntr.com/bounties/c1cbc18b-e4ab-4332-ad13-0033f0f976f5
nvd.nist.gov/vuln/detail/CVE-2024-1163

Code Behaviors & Features

Detect and mitigate CVE-2024-1163 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →