CVE-2020-22474
6.5MEDIUMIn webERP 4.15, the ManualContents.php file allows users to specify the "Language" parameter, which can lead to local file inclusion.
Published: 2/22/2021Updated: 11/21/2024
Description
In webERP 4.15, the ManualContents.php file allows users to specify the "Language" parameter, which can lead to local file inclusion.
AI AnalysisPowered by AI
Affected Products
weberpweberp
4.15
References
- https://lyhinslab.org/index.php/2020/05/16/weberp-lfi/ExploitPatchThird Party Advisory
- https://lyhinslab.org/index.php/2020/05/16/weberp-lfi/ExploitPatchThird Party Advisory