이우진

**Name of the Vulnerable Software and Affected Versions** TAGFREE X-Free Uploader XFU versions 1.0.1.0084 through 1.0.1.0085 TAGFREE X-Free Uploader XFU versions 2.0.1.0034 through 2.0.1.0035 **Description** The software contains a Path Traversal flaw that allows unauthorized access. The issue is due to an improper limitation of a pathname to a restricted directory. **Recommendations** Update TAGFREE X-Free Uploader XFU to version 1.0.1.0085 or later. Update TAGFREE X-Free Uploader XFU to version 2.0.1.0035 or later.

**Name of the Vulnerable Software and Affected Versions** TAGFREE X-Free Uploader XFU versions 1.0.1.0084 through 1.0.1.0084 TAGFREE X-Free Uploader XFU versions 2.0.1.0034 through 2.0.1.0034 **Description** An External Control of File Name or Path vulnerability exists in TAGFREE X-Free Uploader XFU, allowing for Parameter Injection. This issue potentially compromises file paths. **Recommendations** Update TAGFREE X-Free Uploader XFU to version 1.0.1.0085. Update TAGFREE X-Free Uploader XFU to version 2.0.1.0035.