2 matches found
CVE-2023-47624
Audiobookshelf is a self-hosted audiobook and podcast server. In versions 2.4.3 and prior, any user regardless of their permissions may be able to read files from the local file system due to a path traversal in the /hls endpoint. This issue may lead to Information Disclosure. As of time of...
CVE-2023-47624
The CVE-2023-47624 entry affects Audiobookshelf (versions 2.4.3 and earlier). A path traversal in the /hls endpoint can allow any user (even with no privileges) to read files from the local filesystem, leading to Information Disclosure. As of publication, no patches are available. Affected produc...