Description
A path traversal in takeapeek module versions <=0.2.2 allows an attacker to list directory and files.
Remediation
References
https://hackerone.com/reports/403736
Related Vulnerabilities
CVE-2017-16145 Vulnerability in npm package sspa
CVE-2023-46660 Vulnerability in maven package org.jenkins-ci.plugins:zanata
CVE-2022-26112 Vulnerability in maven package org.apache.pinot:pinot-broker
CVE-2016-4055 Vulnerability in maven package org.webjars.bower:moment
CVE-2018-20677 Vulnerability in maven package org.webjars.npm:bootstrap