Ernestang98

**Name of the Vulnerable Software and Affected Versions** SonicJS versions up to 0.7.0 **Description** The issue allows attackers to execute an authenticated path traversal when special characters are injected into the filename of a backup CMS. **Recommendations** For SonicJS versions up to 0.7.0, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.