Ztz

**Name of the Vulnerable Software and Affected Versions** YARD versions prior to 0.9.11 **Description** The issue allows attackers to conduct directory traversal attacks and read arbitrary files due to the failure to block relative paths with an initial ../ sequence in the lib/yard/core ext/file.rb file. **Recommendations** For versions prior to 0.9.11, update to version 0.9.11 or later to resolve the issue.