CVE-2020-19363

CVE-2020-19363

EPSS 3.6%

Vtiger CRM v7.2.0 allows an attacker to display hidden files, list directories by using /libraries and /layout directories.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://emreovunc.com/blog/en/vtiger_crm_directorylisting_01.png https://emreovunc.com/blog/en/vtiger_crm_directorylisting_02.png https://github.com/EmreOvunc/Vtiger-CRM-Vulnerabilities/