CVE-2022-21221
CVE-2022-21221 affects the Go fasthttp package (github.com/valyala/fasthttp) prior to v1.34.0, enabling directory traversal via ServeFile when a backslash (%5c) path separator is used. The issue is noted to impact Windows systems due to path normalization differences. A patch was released in fast...