CVE-2021-22857
The CGE page with download function contains a Directory Traversal vulnerability. Attackers can use this loophole to download system files arbitrarily.
Date published : 2021-02-17
https://www.chtsecurity.com/news/fe1e30ef-4dac-4848-a3c9-a7df12672422