Description
simplehttpserver node module suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names.
Remediation
References
https://hackerone.com/reports/309648
Related Vulnerabilities
CVE-2023-40812 Vulnerability in maven package org.opencrx:opencrx-core-models
CVE-2018-12432 Vulnerability in maven package net.bull.javamelody:javamelody-core
CVE-2022-45210 Vulnerability in maven package org.jeecgframework.boot:jeecg-module-system