A vulnerability classified as critical has been found in anji-plus AJ-Report up to 1.4.1. This affects the function
decompress
of the component ZIP File Handler. The manipulation leads to path traversal.
This vulnerability is uniquely identified as CVE-2024-5353. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.