Description
All versions of package startserver are vulnerable to Directory Traversal due to missing sanitization.
Remediation
References
https://github.com/xudafeng/startserver/blob/bef0c4e4d21da42a40ce87cf25fd54ac8d8cb2d8/lib/index.js%23L71
https://snyk.io/vuln/SNYK-JS-STARTSERVER-1296388
Related Vulnerabilities
CVE-2021-23360 Vulnerability in npm package killport
CVE-2022-24785 Vulnerability in maven package org.webjars.bowergithub.moment:moment
CVE-2021-32859 Vulnerability in maven package org.webjars.npm:github-com-baremetrics-calendar
CVE-2022-21803 Vulnerability in maven package org.webjars.npm:nconf
CVE-2022-24785 Vulnerability in maven package org.fujion.webjars:moment