CVE-2020-36559

Published: 2022-12-27T22:15Z

Last Modified: 2025-04-11T17:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Due to improper sanitization of user input, HTTPEngine.Handle allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt