Description
openSIS Classic 9.3 contains an authenticated path traversal vulnerability in the legacy messaging sent-mail attachment download functionality that allows an authenticated attacker to read arbitrary files on the server via crafted path traversal sequences.
Problem types
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Product status
9.3
Credits
Daniel Celis
References
fluidattacks.com/es/advisories/toto
fluidattacks.com/es/advisories/toto
github.com/OS4ED/openSIS-Classic