CVE-2018-16493

A path traversal vulnerability was found in module static-resource-server 1.7.2 that allows unauthorized read access to any file on the server by appending slashes in the URL. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt