A vulnerability classified as problematic was found in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file download.php. The manipulation of the argument download_file leads to path traversal: '../filedir'.
This vulnerability was named CVE-2024-0465. Access to the local network is required for this attack. Furthermore, there is an exploit available.