2025-06-03 08:09:40
jpcert
PUBLISHED
Improper limitation of a pathname to a restricted directory (Path Traversal) issue exists in TimeWorks 10.0 to 10.3. If exploited, arbitrary JSON files on the server may be viewed by a remote unauthenticated attacker.