Description
A path traversal vulnerability in serve npm package version 7.0.1 allows the attackers to read content of arbitrary files on the remote server.
Remediation
References
https://hackerone.com/reports/358645
Related Vulnerabilities
CVE-2020-13954 Vulnerability in maven package org.apache.cxf:cxf-rt-transports-http
CVE-2022-39366 Vulnerability in maven package io.acryl:datahub-client
CVE-2020-7702 Vulnerability in npm package templ8
CVE-2022-39263 Vulnerability in npm package next-auth
CVE-2023-31582 Vulnerability in maven package org.bitbucket.b_c:jose4j