CVE-2021-26504 Information

Description

Directory Traversal vulnerability in Foddy node-red-contrib-huemagic version 3.0.0 allows remote attackers to gain sensitive information via crafted request in res.sendFile API in hue-magic.js.

Reference

https://github.com/Foddy/node-red-contrib-huemagic/issues/217