CVE-2020-22474
6.5MEDIUMIn webERP 4.15, the ManualContents.php file allows users to specify the "Language" parameter, which can lead to local file inclusion.
Veröffentlicht: 2/22/2021Aktualisiert: 11/21/2024
Beschreibung
In webERP 4.15, the ManualContents.php file allows users to specify the "Language" parameter, which can lead to local file inclusion.
KI-AnalyseKI-gestützt
Betroffene Produkte
weberpweberp
4.15
Referenzen
- https://lyhinslab.org/index.php/2020/05/16/weberp-lfi/ExploitPatchThird Party Advisory
- https://lyhinslab.org/index.php/2020/05/16/weberp-lfi/ExploitPatchThird Party Advisory