Description
serverhuwenhui is a simple http server. serverhuwenhui is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
Remediation
References
https://github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/serverhuwenhui
https://nodesecurity.io/advisories/366
Related Vulnerabilities
CVE-2010-2076 Vulnerability in maven package org.apache.cxf:cxf-bundle-jaxrs
CVE-2018-19586 Vulnerability in maven package org.silverpeas.core:silverpeas-core-web
CVE-2014-0050 Vulnerability in maven package org.apache.jackrabbit:oak-run
CVE-2023-36472 Vulnerability in npm package @strapi/admin
CVE-2022-23913 Vulnerability in maven package org.apache.activemq:artemis-commons