Yiğit Şengezer

**Name of the Vulnerable Software and Affected Versions** İzmir Katip Çelebi University University Information Management System versions prior to 30.11.2023 **Description** The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows Absolute Path Traversal. This means that an attacker could potentially access files or directories outside the intended restricted directory by manipulating the pathname. **Recommendations** For versions prior to 30.11.2023, update to a version released after 30.11.2023 to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.