Name of the Vulnerable Software and Affected Versions featurebook (affected versions not specified)

Description The issue allows a malicious actor to access files outside of the intended directory root, potentially disclosing private files on the vulnerable system. This is due to the resolution of relative file paths in affected versions of featurebook.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to featurebook to trusted networks only, and avoid running it in production code.