Description
A path traversal vulnerability in servey version < 3 allows an attacker to read content of any arbitrary file.
Remediation
References
https://hackerone.com/reports/355501
Related Vulnerabilities
CVE-2020-1956 Vulnerability in maven package org.apache.kylin:kylin-core-common
CVE-2021-4307 Vulnerability in maven package org.webjars.npm:baobab
CVE-2021-25122 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2021-27290 Vulnerability in maven package org.webjars.npm:ssri
CVE-2020-11972 Vulnerability in maven package org.apache.camel:camel-rabbitmq