Xunmint

**Name of the Vulnerable Software and Affected Versions** EVE-NG version 6.4.0-13-PRO **Description** The software contains a directory traversal issue in the `/api/export` interface. This interface, used by authenticated users to export lab files, does not properly validate or filter user-supplied file path parameters. This could allow unauthorized access to files outside the intended directory. The vulnerable parameter is the file path submitted by users. **Recommendations** Apply input validation and filtering to the file path parameter in the `/api/export` interface to prevent directory traversal.