Description
public node module suffers from a Path Traversal vulnerability due to lack of validation of filePath, which allows a malicious user to read content of any file with known path.
Remediation
References
https://hackerone.com/reports/312918
Related Vulnerabilities
CVE-2023-26122 Vulnerability in npm package safe-eval
CVE-2020-13943 Vulnerability in maven package org.apache.tomcat:tomcat-coyote
CVE-2020-36319 Vulnerability in maven package com.vaadin:flow-server
CVE-2021-38153 Vulnerability in maven package org.apache.kafka:kafka-clients
CVE-2021-23356 Vulnerability in npm package kill-process-by-name