[HIGH] AzuraCast has Path Traversal in `currentDirectory` Parameter that Enables Remote Code Execution via Media Upload

PKSA-nx6v-99r9-ndh5 CVE-2026-42605 GHSA-vp2f-cqqp-478j

Affected package: azuracast/azuracast

Affected version: <=0.23.5

Reported by:
GitHub