In Hiawatha before 10.8.4, a remote attacker is able to do directory traversal if AllowDotFiles is enabled.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-22,
Products Affected