Description
wanggoujing123 is a simple webserver. wanggoujing123 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://nodesecurity.io/advisories/374
https://github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/wangguojing123
Related Vulnerabilities
CVE-2017-4974 Vulnerability in maven package org.cloudfoundry.identity:cloudfoundry-identity-common
CVE-2021-23449 Vulnerability in npm package vm2
CVE-2019-10791 Vulnerability in npm package promise-probe
CVE-2021-27850 Vulnerability in maven package org.apache.tapestry:tapestry-core
CVE-2018-1000632 Vulnerability in maven package org.dom4j:dom4j