CVE-2020-22474
6.5MEDIUMIn webERP 4.15, the ManualContents.php file allows users to specify the "Language" parameter, which can lead to local file inclusion.
Publicado: 2/22/2021Actualizado: 11/21/2024
Descripción
In webERP 4.15, the ManualContents.php file allows users to specify the "Language" parameter, which can lead to local file inclusion.
Análisis IAImpulsado por IA
Productos Afectados
weberpweberp
4.15
Referencias
- https://lyhinslab.org/index.php/2020/05/16/weberp-lfi/ExploitPatchThird Party Advisory
- https://lyhinslab.org/index.php/2020/05/16/weberp-lfi/ExploitPatchThird Party Advisory