Description
A path traversal vulnerability in <= v0.9.7 of statichttpserver npm module allows attackers to list files in arbitrary folders.
Remediation
References
https://hackerone.com/reports/570035
Related Vulnerabilities
CVE-2021-4329 Vulnerability in maven package org.webjars.npm:json-logic-js
CVE-2020-12648 Vulnerability in maven package org.webjars:tinymce
CVE-2022-39366 Vulnerability in maven package io.acryl:datahub-client
CVE-2020-35149 Vulnerability in npm package mquery
CVE-2022-2390 Vulnerability in maven package com.google.android.gms:play-services-basement