0.001 Low
EPSS
Percentile
37.0%
serve is vulnerable to directory traversals. The application does not properly handle %2e and %2f as characters, allowing a malicious user to gain access to arbitrary files in a restricted directory.
%2e
%2f
github.com/zeit/serve/pull/316
hackerone.com/reports/307666