Description
cypserver is a static file server. cypserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://nodesecurity.io/advisories/440
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/cypserver
Related Vulnerabilities
CVE-2018-11784 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2023-37957 Vulnerability in maven package io.jenkins.plugins:pipeline-restful-api
CVE-2020-28439 Vulnerability in npm package corenlp-js-prefab
CVE-2020-7677 Vulnerability in npm package thenify
CVE-2022-1233 Vulnerability in maven package org.webjars.bower:urijs