Malicious Path #84

liuhong1happy · 2016-07-10T06:25:01Z

when I use koa-static 2.0.0 in windows, the render page's content is Malicious Path.

The text was updated successfully, but these errors were encountered:

tejasmanohar · 2016-07-10T08:46:41Z

i don't use windows, but a small, runnable example would be nice for those who do

ghost · 2016-09-14T09:33:20Z

koa-static": "^3.0.0"

app.use(serve(__dirname+'/public'));

when I use koa-static 3.0.0 in windows 7, the render page's content is Malicious Path.

ghost · 2016-09-23T05:39:10Z

koa-static": "^3.0.0"
modify：
return send(ctx, ctx.path.slice(1), opts)
Win7 it is OK.

ghost · 2016-09-26T02:55:58Z

reson:
window7,node.js v5.7.0
path.parse("/a.txt");
{ root: '', dir: '', base: 'a.txt', ext: '.txt', name: 'a' }

window7,node.js v6.6.0
path.parse("/a.txt");
{ root: '/', dir: '/', base: 'a.txt', ext: '.txt', name: 'a' }

Please upgrade node.js

haoxins added the question label Jul 10, 2016

haoxins mentioned this issue Sep 18, 2016

windows 7 koa2 koa-static": "^3.0.0" question:Malicious Path #88

Closed

jonathanong closed this as completed Sep 30, 2017

Provide feedback