Description
augustine node module suffers from a Path Traversal vulnerability due to lack of validation of url, which allows a malicious user to read content of any file with known path.
Remediation
References
https://hackerone.com/reports/296282
Related Vulnerabilities
CVE-2021-35516 Vulnerability in maven package org.apache.commons:commons-compress
CVE-2021-23807 Vulnerability in npm package jsonpointer
CVE-2022-2466 Vulnerability in maven package io.quarkus:quarkus-smallrye-graphql
CVE-2016-10531 Vulnerability in maven package org.webjars.bower:marked
CVE-2022-36025 Vulnerability in maven package org.hyperledger.besu:evm