Vulzzz

**Name of the Vulnerable Software and Affected Versions** simplehttpserver versions <=0.2.1 simplehttpserver versions (all versions are affected) **Description** The issue allows an attacker to access files outside the webroot due to a Path Traversal vulnerability. This is possible because the vulnerability enables symlink navigation in the URL, allowing the listing of any file in another folder of the web root. **Recommendations** For simplehttpserver versions <=0.2.1: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For all versions of simplehttpserver: Do not use simplehttpserver in production or consider using an alternative module until a fix is made available.