12Oca
CVE-2023-49801 | Lif-Platforms Lif-Auth-Server up to 1.3.x get_pfp/get_banner path traversal (GHSA-3v77-pvqq-qg3f)
A vulnerability, which was classified as problematic, was found in Lif-Platforms Lif-Auth-Server up to 1.3.x. Affected is the functionget_pfp/get_banner
. The manipulation leads to relative path traversal.
This vulnerability is traded as CVE-2023-49801. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.