Giters

aravindvnair99 / Spot-the-Hole

Fully autonomous and intelligent platform to detect, monitor and manage potholes issues. An end-to-end system with a PWA front-end for users to report potholes and government authorities to track and manage them.

Home Page:https://spot-the-hole.web.app

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Insecure File Management

aravindvnair99 opened this issue · comments

commented

⚠️ We detected 2 security issues in this pull request:

Insecure File Management (2)
Docs Details
💡 Title: Path Traversal, Severity: High

Spot-the-Hole/functions/index.js

Line 631 in b989b4f

path.basename(req.files.file[0].fieldname)
💡 Title: Path Traversal from user input, Severity: High

Spot-the-Hole/functions/index.js

Line 649 in b989b4f

path.basename(req.files.file[0].fieldname)

More info on how to fix Insecure File Management in JavaScript.

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

Originally posted by @guardrails[bot] in #83 (comment)