cve/CVE-2023-38879.md at e6ecd99f3d241ced14da2cc5fcb4da3fd3429d9d

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio e6ecd99f3d Update CVE sources 2024-06-07 17:53

2024-06-07 17:53:02 +00:00

Description

The Community Edition version 9.0 of OS4ED's openSIS Classic allows remote attackers to read arbitrary files via a directory traversal vulnerability in the 'filename' parameter of 'DownloadWindow.php'.

POC

Reference

https://github.com/dub-flow/vulnerability-research/tree/main/CVE-2023-38879

Github

No PoCs found on GitHub currently.

699 B Raw Blame History

CVE-2023-38879

Description

POC

Reference

Github

699 B

Raw Blame History