0.002 Low
EPSS
Percentile
64.7%
mcstatic is vulnerable to directory traversal. The vulnerability is possible because it does not handle the file name parameter properly, allowing the attacker to read arbitrary files on the target server by appending ../ in the file path.
../
hackerone.com/reports/330285