CVE-2024-5443 | parisneo lollms up to 9.7 ExtensionBuilder.build_extension path traversal

CVE-2024-5443 | parisneo lollms up to 9.7 ExtensionBuilder.build_extension path traversal

A vulnerability was found in parisneo lollms up to 9.7 and classified as very critical. This issue affects the function ExtensionBuilder.build_extension. The manipulation leads to path traversal: '\..\filename'. The identification of this vulnerability is CVE-2024-5443. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.