{"id":"CVE-2017-1000448","details":"Structured Data Linter versions 2.4.1 and older are vulnerable to a directory traversal attack in the URL input field resulting in the possibility of disclosing information about the remote host.","modified":"2026-07-08T12:53:50.871885Z","published":"2018-01-02T17:29:00.337Z","references":[{"type":"ADVISORY","url":"https://github.com/structured-data/linter/issues/41"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/structured-data/linter","events":[{"introduced":"0"},{"last_affected":"5aaea3aedd747487dbb95ae8fa2bb2929defea0b"}],"database_specific":{"source":"CPE_RANGE","cpe":"cpe:2.3:a:structured-data:structured_data_linter:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"0"},{"last_affected":"2.4.1"}]}}],"versions":["2.4.1","2.4.0","2.3.12","2.3.11","2.3.10","2.3.9","2.3.8","2.3.7","2.3.6-hf2","2.3.6","2.3.5a","2.3.5","2.3.4-hf1","2.3.4","2.3.3-hf1","2.3.3"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000448.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}