CVE-2016-10734

CVE-2016-10734

EPSS 1.5%

ProjectSend (formerly cFTP) r582 allows Insecure Direct Object Reference via includes/actions.log.export.php.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/sandboxescape/ProjectSend-multiple-vulnerabilities/