Description
serveryaozeyan is a simple HTTP server. serveryaozeyan is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.
Remediation
References
https://nodesecurity.io/advisories/355
https://github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/serveryaozeyan
Related Vulnerabilities
CVE-2022-43183 Vulnerability in maven package com.xuxueli:xxl-job-core
CVE-2022-23458 Vulnerability in maven package org.webjars.npm:tui-grid
CVE-2020-8149 Vulnerability in npm package logkitty
CVE-2021-38542 Vulnerability in maven package org.apache.james:james-server
CVE-2022-34115 Vulnerability in maven package io.dataease:dataease-plugin-common