CVE

CVE-2018-7668

CVE-2018-7668

TestLink through 1.9.16 allows remote attackers to read arbitrary attachments via a modified ID field to /lib/attachments/attachmentdownload.php.

Source: CVE-2018-7668

Exit mobile version