2022-05-01 15:25:44
snyk
PUBLISHED
This affects the package pistacheio/pistache before 0.0.3.20220425. It is possible to traverse directories to fetch arbitrary files from the server.