CVE-2022-25336

Posted on 2022년 2월 19일2022년 2월 19일 by admin

CVE-2022-25336

Ibexa DXP ezsystems/ezpublish-kernel 7.5.x before 7.5.26 and 1.3.x before 1.3.12 allows Insecure Direct Object Reference (IDOR) attacks against image files because the image path and filename can be correctly deduced.

Source: CVE-2022-25336

답글 남기기 응답 취소