Web: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23514

Jan. 13, 2022, 2:15 p.m. |

National Vulnerability Database nist.gov

This affects the package Crow before 0.3+4. It is possible to traverse directories to fetch arbitrary files from the server.

2021 cve

Head of Information Security

@ Canny | Remote

Information Technology Specialist (INFOSEC)

@ U.S. Securities & Exchange Commission | Washington, D.C.

Information Security Manager - $90K-$180K - MANAG002176

@ Sound Transit | Seattle, WA

Sr. Software Security Architect

@ SAS | Remote

Senior Incident Responder

@ CipherTechs, Inc. | Remote

Data Security DevOps Engineer Senior/Intermediate

@ University of Michigan - ITS | Ann Arbor, MI