Description
stattic node module suffers from a Path Traversal vulnerability due to lack of validation of path, which allows a malicious user to read content of any file with known path.
Remediation
References
https://hackerone.com/reports/319003
Related Vulnerabilities
CVE-2016-10735 Vulnerability in maven package org.webjars.bowergithub.twbs:bootstrap-sass
CVE-2023-26129 Vulnerability in npm package bwm-ng
CVE-2020-8116 Vulnerability in npm package dot-prop
CVE-2021-23329 Vulnerability in npm package nested-object-assign
CVE-2018-19056 Vulnerability in maven package org.webjars.npm:editor.md