Description
stattic node module suffers from a Path Traversal vulnerability due to lack of validation of path, which allows a malicious user to read content of any file with known path.
Remediation
References
https://hackerone.com/reports/319003
Related Vulnerabilities
CVE-2022-36083 Vulnerability in maven package org.webjars.npm:jose
CVE-2023-34617 Vulnerability in maven package com.owlike:genson
CVE-2019-6284 Vulnerability in npm package node-sass
CVE-2020-28500 Vulnerability in maven package org.webjars:lodash
CVE-2018-20835 Vulnerability in maven package org.webjars.npm:tar-fs