Description
A Path traversal exists in http_server which allows an attacker to read arbitrary system files.
Remediation
References
https://hackerone.com/reports/692262
Related Vulnerabilities
CVE-2020-16044 Vulnerability in npm package electron
CVE-2018-25050 Vulnerability in npm package chosen-js
CVE-2019-12395 Vulnerability in maven package us.dynmap:dynmap
CVE-2020-8175 Vulnerability in npm package jpeg-js
CVE-2023-6394 Vulnerability in maven package io.quarkus:quarkus-smallrye-graphql