Description
xtalk helps your browser talk to nodex, a simple web framework. xtalk is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
Remediation
References
https://nodesecurity.io/advisories/339
Related Vulnerabilities
CVE-2017-16019 Vulnerability in npm package gitbook
CVE-2021-4306 Vulnerability in npm package terminal-kit
CVE-2021-23384 Vulnerability in npm package koa-remove-trailing-slashes
CVE-2022-39353 Vulnerability in maven package org.webjars.npm:xmldom
CVE-2021-32730 Vulnerability in maven package org.xwiki.platform:xwiki-platform-administration-ui