Cuberite · Cuberite · CVE-2019-15516
**Name of the Vulnerable Software and Affected Versions**
Cuberite versions prior to 2019-06-11
**Description**
The issue allows directory traversal in the webadmin directory via ../ sequences because the protection mechanism only removes one ../ substring.
**Recommendations**
For versions prior to 2019-06-11, update to a version released after 2019-06-11 to resolve the issue.