CVE-2022-46959
Sonic go-sonic v1.0.4 is affected by a Path Traversal vulnerability in the /admin/backups/work-dir component. The issue allows an attacker to traverse directories and access files outside the intended directory, due to insufficient sanitization in the backup workflow (BackupWholeSite/toBackupPath...