Irbishop

**Name of the Vulnerable Software and Affected Versions** BlogEngine.NET version 3.3.7.0 **Description** The issue allows for Directory Traversal via the `path` parameter in the "/api/filemanager" API endpoint. **Recommendations** For BlogEngine.NET version 3.3.7.0, avoid using the `path` parameter in the "/api/filemanager" API endpoint until the issue is resolved. Consider restricting access to this endpoint to minimize the risk of exploitation.