Yunpeng

**Name of the Vulnerable Software and Affected Versions** Apache OFBiz versions prior to 18.12.12 **Description** The issue is related to a possible path traversal in Apache OFBiz, allowing authentication bypass. This can be exploited by a remote attacker to bypass the authentication process. **Recommendations** For versions prior to 18.12.12, upgrade to version 18.12.12 to fix the issue. As a temporary workaround, consider restricting access to sensitive directories to minimize the risk of exploitation.