EPSS
Percentile
79.5%
tmock is vulnerable to directory traversal attacks. This attack is possible by requesting a url such as /..%2f..%2fetc/passwd to get sensitive information.
/..%2f..%2fetc/passwd
github.com/JacksonGL
github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/tmock
nodesecurity.io/advisories/375