CVE-2023-29478

Name of the Vulnerable Software and Affected Versions BiblioCraft versions prior to 2.4.6

Description The issue allows restricted write access to almost anywhere on the filesystem due to a failure to sanitize path-traversal characters in filenames. This can include the Minecraft mods folder, resulting in code execution.

Recommendations For versions prior to 2.4.6, update to version 2.4.6 or later to resolve the issue. As a temporary workaround, consider restricting write access to sensitive areas of the filesystem to minimize the risk of exploitation.