Description
cypserver is a static file server. cypserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/cypserver
https://nodesecurity.io/advisories/440
Related Vulnerabilities
CVE-2020-5259 Vulnerability in npm package dojox
CVE-2021-41182 Vulnerability in maven package org.webjars.npm:jquery-ui
CVE-2020-12265 Vulnerability in maven package org.webjars.npm:decompress-tar
CVE-2023-46604 Vulnerability in maven package org.apache.activemq:activemq-openwire-legacy
CVE-2020-11113 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind