1. Critical Security Flaw in webpack-dev-middleware Exposes Developer Machines to File Access
A severe vulnerability in the widely used webpack-dev-middleware package allows attackers to access any file on a developer's local machine. The flaw, tracked as CVE-2024-29180, stems from insufficient URL validation before the middleware returns a local file. This creates a direct path for unauthorized access to sensi...