CVE-2019-25618 | Admin-Express AdminExpress 1.2.5.485 System Compare Feature comparison Folder Path file inclusion (Exploit 46711 / EDB-46711)

A vulnerability marked as problematic has been reported in Admin-Express AdminExpress 1.2.5.485. Affected is the function comparison of the component System Compare Feature. Performing a manipulation of the argument Folder Path results in file inclusion.

This vulnerability is identified as CVE-2019-25618. The attack is only possible with local access. Additionally, an exploit exists.VulDB Recent EntriesRead More