rdiffweb prior to 2.4.10 is vulnerable to Path Traversal. Version 2.4.10 contains a patch.
{ "nvd_published_at": "2022-10-06T18:16:00Z", "severity": "HIGH", "github_reviewed_at": "2022-10-06T20:10:47Z", "github_reviewed": true, "cwe_ids": [ "CWE-22" ] }