Allegra · Allegra · CVE-2026-11442
**Name of the Vulnerable Software and Affected Versions**
Allegra (affected versions not specified)
**Description**
A directory traversal flaw in the `exportReport()` method allows authenticated remote attackers to disclose sensitive information. The issue occurs because the software fails to properly validate user-supplied paths before performing file operations, enabling access to files within the context of the service account.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.