Description
http_static_simple is an http server. http_static_simple is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://nodesecurity.io/advisories/472
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/http_static_simple
Related Vulnerabilities
CVE-2020-7622 Vulnerability in maven package io.jooby:jooby-netty
CVE-2015-8861 Vulnerability in maven package org.webjars.npm:handlebars
CVE-2016-2175 Vulnerability in maven package org.apache.pdfbox:jempbox
CVE-2020-17518 Vulnerability in maven package org.apache.flink:flink-runtime_2.11
CVE-2020-36189 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind