All versions of package easy-static-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| easy-static-server_project | easy-static-server | * |