Description
A path traversal vulnerability in <= v0.9.7 of statichttpserver npm module allows attackers to list files in arbitrary folders.
Remediation
References
https://hackerone.com/reports/570035
Related Vulnerabilities
CVE-2021-23337 Vulnerability in maven package org.fujion.webjars:lodash
CVE-2021-42567 Vulnerability in maven package org.apereo.cas:cas-server-core-services
CVE-2021-45046 Vulnerability in maven package org.apache.logging.log4j:log4j-core
CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.ihc
CVE-2022-35915 Vulnerability in npm package openzeppelin-eth