Information from Chitora soft

Vulnerability ID:JVN#68350834
Title:Lhaz and Lhaz+ vulnerable to path traversal
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.