Description
quickserver is a simple static file server. quickserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Remediation
References
https://nodesecurity.io/advisories/433
https://github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/quickserver
Related Vulnerabilities
CVE-2018-19056 Vulnerability in maven package org.webjars.bower:editor.md
CVE-2021-43090 Vulnerability in maven package com.predic8:soa-model-core
CVE-2021-21290 Vulnerability in maven package io.netty:netty-common
CVE-2022-48285 Vulnerability in maven package org.webjars.npm:jszip
CVE-2017-2613 Vulnerability in maven package org.jenkins-ci.main:jenkins-core