Description
Authorization Bypass Through User-Controlled Key in GitHub repository ionicabizau/parse-path prior to 5.0.0.
Remediation
References
https://github.com/ionicabizau/parse-path/commit/f9ad8856a3c8ae18e1cf4caef5edbabbc42840e8
https://huntr.dev/bounties/afffb2bd-fb06-4144-829e-ecbbcbc85388
Related Vulnerabilities
CVE-2023-37943 Vulnerability in maven package org.jenkins-ci.plugins:active-directory
CVE-2021-41411 Vulnerability in maven package org.drools:drools-core
CVE-2017-12649 Vulnerability in maven package com.liferay:com.liferay.asset.browser.web
CVE-2022-31070 Vulnerability in npm package @ffdc/nestjs-proxy