Description
This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js.
Remediation
References
https://snyk.io/vuln/SNYK-JS-FASTHTTP-572892
Related Vulnerabilities
CVE-2019-17495 Vulnerability in maven package io.springfox:springfox-swagger-ui
CVE-2020-11022 Vulnerability in maven package org.fujion.webjars:jquery
CVE-2022-2576 Vulnerability in maven package org.eclipse.californium:californium-core
CVE-2022-41929 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2021-41249 Vulnerability in npm package graphql-playground-react