Intro Directory Traversal vulnerability was identified and responsibly reported through Livesport’s official bug bounty program.
A security assessment identified an externally reachable attack path that allowed an unauthenticated attacker to progressively gain and escalate access, ultimately resulting in administrative control planetum.cz and remote code execution.
Identified Cross-Site Scripting (XSS) vulnerability, which may compromise the security of user’s data.