CVE-2023-49801 | Lif-Platforms Lif-Auth-Server up to 1.3.x get_pfp/get_banner path traversal (GHSA-3v77-pvqq-qg3f)

CVE-2023-49801 | Lif-Platforms Lif-Auth-Server up to 1.3.x get_pfp/get_banner path traversal (GHSA-3v77-pvqq-qg3f)

A vulnerability, which was classified as problematic, was found in Lif-Platforms Lif-Auth-Server up to 1.3.x. Affected is the function get_pfp/get_banner. The manipulation leads to relative path traversal. This vulnerability is traded as CVE-2023-49801. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.