A vulnerability has been found in Chitora Soft Lhaz and Lhaz+ and classified as critical . This affects an unknown part of the component Archive File Handler . Performing a manipulation results in path traversal. This vulnerability is known as CVE-2026-41530 . Remote exploitation of the attack is possible. No exploit is available.