A vulnerability, which was classified as critical , was found in ProjeQtor up to 12.4.3 . This impacts an unknown function of the file dynamicDialog.php . Executing a manipulation of the argument logname can lead to path traversal. This vulnerability is registered as CVE-2026-41465 . It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.