A vulnerability, which was classified as problematic, has been found in parisneo lollms-webui up to 9.6. Affected by this issue is the function
open_file
of the file lollms_advanced.py. The manipulation leads to absolute path traversal.
This vulnerability is handled as CVE-2024-6250. The attack may be launched remotely. There is no exploit available.