Description
fast-http-cli is the command line interface for fast-http, a simple web server. fast-http-cli is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/fast-http-cli
https://nodesecurity.io/advisories/383
Related Vulnerabilities
CVE-2021-41269 Vulnerability in maven package com.cronutils:cron-utils
CVE-2018-18950 Vulnerability in npm package kindeditor
CVE-2023-49210 Vulnerability in npm package openssl
CVE-2022-46175 Vulnerability in maven package org.webjars.npm:json5
CVE-2021-25122 Vulnerability in maven package org.apache.tomcat:tomcat-catalina