CVE-2017-10974by Jeremyin Security Bulletinson Posted on July 7, 2017 Yaws 1.91 allows Unauthenticated Remote File Disclosure via HTTP Directory Traversal with /%5C../ to port 8080.