socket.io-file is vulnerable to path traversal. The vulnerability is possible as file upload paths are generated by directly passing unsanitised user-provided name
to path.join()
in the function socket.io-file::createFile
through uploadDir
and rename
options.