Description
lab6.brit95 is a file server. lab6.brit95 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/lab6.brit95
https://nodesecurity.io/advisories/475
Related Vulnerabilities
CVE-2020-36380 Vulnerability in npm package aaptjs
CVE-2021-21391 Vulnerability in npm package @ckeditor/ckeditor5-paste-from-office
CVE-2021-23331 Vulnerability in maven package com.squareup:connect
CVE-2022-40151 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2023-29922 Vulnerability in maven package tech.powerjob:powerjob