Description
lab6drewfusbyu is an http server. lab6drewfusbyu is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://nodesecurity.io/advisories/474
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/lab6drewfusbyu
Related Vulnerabilities
CVE-2020-28487 Vulnerability in maven package org.webjars.bowergithub.visjs:vis-timeline
CVE-2022-36077 Vulnerability in maven package org.webjars.npm:electron
CVE-2015-0254 Vulnerability in maven package org.apache.taglibs:taglibs-standard
CVE-2018-1306 Vulnerability in maven package org.apache.portals.pluto:portletv3annotateddemo
CVE-2023-43123 Vulnerability in maven package org.apache.storm:storm-client