Description
hcbserver is a static file server. hcbserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://nodesecurity.io/advisories/414
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/hcbserver
Related Vulnerabilities
CVE-2018-3726 Vulnerability in npm package crud-file-server
CVE-2016-10726 Vulnerability in maven package org.dspace:dspace-xmlui
CVE-2020-6423 Vulnerability in npm package electron
CVE-2022-3171 Vulnerability in maven package com.google.protobuf:protobuf-java
CVE-2022-35915 Vulnerability in npm package openzeppelin-solidity