github.com/valyala/fasthttp is vulnerable to directory traversal. Improper sanitization in ServeFile
function makes it possible to be exploited by using a backslash %5c
character in the path resulting in directory traversal vulnerability.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/valyala/fasthttp | le | v1.33.0 | |
github.com/valyala/fasthttp | le | v1.33.0 |