All versions of package lite-dev-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| lite-dev-server_project | lite-dev-server | - |