A vulnerability, which was classified as problematic, was found in ProjectSend r754. This affects an unknown part of the file process.php?do=zip_download. The manipulation of the argument client/file leads to information disclosure. It is possible to initiate the attack remotely.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2017/Feb/58 | Exploit Mailing List Third Party Advisory |
https://vuldb.com/?id.97275 | Third Party Advisory |
https://youtu.be/Xc6Jg9I7Pj4 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2022-06-27T13:25:21
Updated: 2022-06-27T13:25:20
Reserved: 2022-06-25T00:00:00
Link: CVE-2017-20101
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-06-27T14:15:07.977
Modified: 2022-07-07T02:03:11.027
Link: CVE-2017-20101
JSON object: View
Redhat Information
No data.