Path traversal in the static file service in Iodine less than 0.7.33 allows an unauthenticated, remote attacker to read files outside the public folder via malicious URLs.

Malicious URL drafting attack against iodines static file server may allow path traversal