CVE-2023-50265 | morpheus65535 bazarr up to 1.3.0 /api/swaggerui/static send_file filename path traversal (GHSL-2023-192)

CVE-2023-50265 | morpheus65535 bazarr up to 1.3.0 /api/swaggerui/static send_file filename path traversal (GHSL-2023-192)

A vulnerability, which was classified as critical, has been found in morpheus65535 bazarr up to 1.3.0. This issue affects the function send_file of the file /api/swaggerui/static. The manipulation of the argument filename leads to path traversal. The identification of this vulnerability is CVE-2023-50265. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.