EPSS
Percentile
74.8%
sspa is vulnerable to directory traversal attacks. It is possible by requesting a URL such as /..%2f..%2fetc/passwd to get sensitive information.
/..%2f..%2fetc/passwd
github.com/JacksonGL/NPM-Vuln-PoC/blob/master/directory-traversal/sspa
github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/sspa
nodesecurity.io/advisories/463