Apache OFBiz Platform Vulnerability Allows Path Traversal

The Apache OFBiz platform has a path traversal vulnerability due to insufficient validation of the user-provided contextPath parameter. This flaw, identified as CVE-2024-36104, allows an attacker to manipulate file paths and access unauthorized resources. Technical details indicate that the lack of adequate controls on user inputs is the root cause of this vulnerability.