CVE-2019-5415

Name of the Vulnerable Software and Affected Versions serve versions prior to 7.0.1

Description A bug in handling the ignore files and directories feature in serve allows an attacker to read a file or list the directory that the victim has not allowed access to. This issue is related to Path Traversal, where explicitly ignored folders can be accessed if the path contains a /./, allowing attackers to access hidden folders and files.

Recommendations For versions prior to 7.0.1, upgrade to version 7.0.1 or later.