A vulnerability described as critical has been identified in dagu-org dagu up to 2.3.0. Affected is the function
generateFilepath of the component API Endpoint. Such manipulation leads to path traversal.
This vulnerability is listed as CVE-2026-33344. The attack may be performed from remote. There is no available exploit.
Upgrading the affected component is recommended.
