CVE-2014-3744: Directory Traversal

October 23, 2017 (updated November 15, 2017)

URL encoded dots in path are not properly handled, leading to possible directory traversal.

References

github.com/isaacs/st

Code Behaviors & Features

Detect and mitigate CVE-2014-3744 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →