qpress is a patched version of the qpress file archiver from EvgeniyPatlan’s personal developer. qpress 11.3 and versions prior to 2022.08.19 contain a directory traversal vulnerability that stems from a lack of path checking when processing directory requests, which could be exploited by an attacker to obtain sensitive information.