Moderate severityNVD Advisory· Published Dec 7, 2022· Updated Apr 23, 2025
Directory traversal on Windows in github.com/labstack/echo/v4
CVE-2020-36565
Description
Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/labstack/echo/v4Go | < 4.2.0 | 4.2.0 |
Affected products
2Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.