← back
CVE-2019-14362

CVE-2019-14362

EPSS 2.1%
Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://grep.blog/directory-traversal-openbravo/https://issues.openbravo.com/view.php?id=41413https://www.sitincloud.com/securite/directory-traversal-openbravo-erp/