Description
sgqserve is a simple file server. sgqserve is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/sgqserve
https://nodesecurity.io/advisories/419
Related Vulnerabilities
CVE-2023-39155 Vulnerability in maven package org.jenkins-ci.plugins:chef-identity
CVE-2023-0674 Vulnerability in maven package com.xuxueli:xxl-job-core
CVE-2019-19935 Vulnerability in npm package froala-editor
CVE-2015-6420 Vulnerability in maven package commons-collections:commons-collections
CVE-2021-44585 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base-core