2022-01-13 14:10:13
snyk
PUBLISHED
This affects the package Crow before 0.3+4. It is possible to traverse directories to fetch arbitrary files from the server.