CVE-2018-17785
Affected software: blynk-server (Blynk) prior to 0.39.7. Vulnerability: Directory Traversal via a ../ in a URI that begins with /static or /static/js, demonstrated by reading /etc/passwd. Root cause: improper validation of path traversal in static assets; enables access to arbitrary files on the ...