Description
A Path Traversal in simplehttpserver versions <=0.2.1 allows to list any file in another folder of web root.
Remediation
References
https://hackerone.com/reports/403703
Related Vulnerabilities
CVE-2019-10158 Vulnerability in maven package org.infinispan:infinispan-spring5-embedded
CVE-2016-4978 Vulnerability in maven package org.apache.activemq:artemis-jms-client
CVE-2019-1003045 Vulnerability in maven package de.eacg:ecs-publisher
CVE-2020-5413 Vulnerability in maven package org.springframework.integration:spring-integration
CVE-2018-1000644 Vulnerability in maven package org.eclipse.rdf4j:rdf4j-rio-trix