What the vulnerability does
01Description
Path Traversal: '.../...//' vulnerability in Quý Lê 91 Administrator Z administrator-z allows Path Traversal.This issue affects Administrator Z: from n/a through <= 2025.03.28.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
What the vulnerability does
Path Traversal: '.../...//' vulnerability in Quý Lê 91 Administrator Z administrator-z allows Path Traversal.This issue affects Administrator Z: from n/a through <= 2025.03.28.
Explanation of Vulnerability in Simple Terms
Administrator Z versions up to 2025.03.28 contain a flaw that allows high-privileged users to read sensitive data they should not access. The vulnerability requires administrator-level credentials and network access. No code execution or data modification is possible. A patch version has not been publicly identified.
What an attacker can do
Read sensitive information on the site if they have administrator credentials.
Potential impact on your site
Administrators with malicious intent or compromised admin accounts can access confidential data.
Conditions required to exploit
Attacker must have high-level administrator access to the application.
Key dates
External resources