CVE-2017-16153
The CVE-2017-16153 entry concerns the npm package gaoxuyan, with a directory traversal vulnerability triggered by relative path sequences (e.g., ../../) in the URL, allowing filesystem disclosure. Connected sources corroborate: gaoxuyan is vulnerable to directory traversal, exposing private files...