Description
earlybird is a web server module for early development. earlybird is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/earlybird
https://nodesecurity.io/advisories/380
Related Vulnerabilities
CVE-2023-3635 Vulnerability in maven package com.squareup.okio:okio-jvm
CVE-2022-22880 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base-core
CVE-2018-15890 Vulnerability in maven package org.ethereum:ethereumj-core
CVE-2020-12648 Vulnerability in maven package org.webjars.bower:tinymce
CVE-2023-42278 Vulnerability in maven package cn.hutool:hutool-json