Back to CVE List

CVE-2026-54286

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score

5.9 / 10

Vulnerability Description

hono: Path traversal in `serve-static` on Windows via encoded backslash (`%5C`)

Vulnerability Details

Published Date

June 16, 2026

Last Modified

June 16, 2026

Source

GitHub

Vendor

npm

Product

hono

External References

Discussion (0)

Add Comment

No comments yet. Be the first!