Vulnerabilities in Fonoster

1 result

CVE-2024-43035MEDIUMFonoster 0.5.5 before 0.6.1 allows ../ directory traversal to read arbitrary files via the /sounds/:file or /tts/:file VoiceServer endpoint.EPSS 2.4%