EPSS
Percentile
70.5%
stattic is vulnerable to path traversal attacks. Using a string including ../, attackers can traverse the server and any file with a known path.
../
github.com/jmjuanes/stattic/commit/1649daafa646b12d7311640690df967b0107d768
hackerone.com/bl4de
hackerone.com/reports/319003