Description
Authorization Bypass Through User-Controlled Key in GitHub repository ionicabizau/parse-path prior to 5.0.0.
Remediation
References
https://github.com/ionicabizau/parse-path/commit/f9ad8856a3c8ae18e1cf4caef5edbabbc42840e8
https://huntr.dev/bounties/afffb2bd-fb06-4144-829e-ecbbcbc85388
Related Vulnerabilities
CVE-2020-8203 Vulnerability in maven package org.fujion.webjars:lodash
CVE-2021-31522 Vulnerability in maven package org.apache.kylin:kylin-server-base
CVE-2015-0250 Vulnerability in maven package org.eclipse.birt.runtime.3_7_1:org.apache.batik.dom
CVE-2021-46704 Vulnerability in npm package genieacs
CVE-2018-3722 Vulnerability in maven package org.webjars.npm:merge-deep