@backstage/plugin-scaffolder-backend is vulnerable to path traversal. An attacker with access to a registered scaffolder template can manipulate the template by writing files to arbitrary paths on the scaffolder-backend host instance. The vulnerability can be exploited through the user input when executing a template. This method will allow the attacker to control the content of the injected file, unless the template is also crafted in a way that gives control of the file contents.