Description
Path traversal in buttle module versions <= 0.2.0 allows to read any file in the server.
Remediation
References
https://hackerone.com/reports/358112
Related Vulnerabilities
CVE-2021-21179 Vulnerability in npm package electron
CVE-2017-16201 Vulnerability in npm package zjjserver
CVE-2018-3745 Vulnerability in maven package org.webjars.bowergithub.node-browser-compat:atob
CVE-2021-23342 Vulnerability in npm package docsify
CVE-2021-46363 Vulnerability in maven package info.magnolia:magnolia-core