CVE

CVE-2020-15958

admin

CVE-2020-15958

An issue was discovered in 1CRM System through 8.6.7. An insecure direct object reference to internally stored files allows a remote attacker to access various sensitive information via an unauthenticated request with a predictable URL.

Source: CVE-2020-15958

Exit mobile version