This is a companion discussion topic for the original entry at https://blog.ironmansoftware.com/CVE-2022-published-folder-escape/
Kudos to the customer who reported this and @adam for lightning speed response
Does this also affect published folders on v2.9 of Universal Dashboard?
Sorry I’ve just seen how to test it, yes it does affect UD2.9. Am I right in assuming that it is out of support now and UD2.9 won’t be patched?
As mentioned in the article
The following version numbers contain the fix for this issue.
Sorry, I meant Universal Dashboard v2.9 running standalone (pre-PSU), rather than PowerShell Universal. It looks like the download for 2.9.4 is a download for PSU.
This does not affect UD 2.9