Description
serverabc is a static file server. serverabc is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/serverabc
https://nodesecurity.io/advisories/459
Related Vulnerabilities
CVE-2020-28277 Vulnerability in npm package dset
CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.ihc
CVE-2022-36083 Vulnerability in npm package jose-browser-runtime
CVE-2023-35165 Vulnerability in npm package @aws-cdk/aws-eks
CVE-2023-3691 Vulnerability in maven package org.webjars.bowergithub.layui:layui