CVE-2020-36565

CVE-2020-36565 corresponds to a directory-traversal vulnerability in the Windows environment within the static file handler of labstack/echo/v4. The root cause is improper sanitization of user input, allowing an attacker to read files outside the target directory that the server has permission to...