CVE-2023-5588

Name of the Vulnerable Software and Affected Versions kphrx pleroma (affected versions not specified)

Description A vulnerability was found in kphrx pleroma, classified as problematic. It affects the function Pleroma.Emoji.Pack of the file lib/pleroma/emoji/pack.ex. The manipulation of the argument name leads to path traversal. The complexity of an attack is rather high, and the exploitability is told to be difficult.

Recommendations To fix this issue, it is recommended to apply the patch named 2c795094535537a8607cc0d3b7f076a609636f40. As a temporary workaround, consider restricting access to the Pleroma.Emoji.Pack function until the patch is applied.