A vulnerability has been identified in Mongoose, which could allow directory traversal attacks. This issue is caused by an input validation error when processing HTTP requests, which could be exploited by remote attackers to disclose the contents of arbitrary files outside of the web folder.
Vulnerable Products
Vulnerable Software: Mongoose version 2.11 and prior
