CVE-2018-12909

CVE-2018-12909

** DISPUTED ** Webgrind 1.5 relies on user input to display a file, which lets anyone view files from the local filesystem (that the webserver user has access to) via an index.php?op=fileviewer&file= URI. NOTE: the vendor indicates that the product is not intended for a "publicly accessible environment."

Source: CVE-2018-12909

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다