search

mattgodbolt / seasocks

Simple, small, C++ embeddable webserver with WebSockets support
BSD 2-Clause "Simplified" License
724 stars 120 forks source link

It's easy to get files outside of the static dir #162

Open mattgodbolt opened 2 years ago

mattgodbolt commented 2 years ago

We don't stop things like http://host:8080/../../../etc/passwd

linkjumper commented 1 year ago

If static root dir is not set, it is even simplier: http://host:8080/etc/passwd