Description
node-server-forfront is a simple static file server. node-server-forfront is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://nodesecurity.io/advisories/382
https://github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/node-server-forfront
Related Vulnerabilities
CVE-2017-16129 Vulnerability in maven package org.webjars:superagent
CVE-2019-10343 Vulnerability in maven package io.jenkins:configuration-as-code
CVE-2018-1000008 Vulnerability in maven package org.jvnet.hudson.plugins:pmd
CVE-2022-31129 Vulnerability in maven package org.webjars.bower:moment
CVE-2021-45029 Vulnerability in maven package org.apache.shenyu:shenyu-common