CVE-2018-25408 | openises Open ISES Project 3.30A Configuration File ajax/download.php filename path traversal (Exploit 45655)

A vulnerability was found in openises Open ISES Project 3.30A. It has been rated as critical. This issue affects some unknown processing of the file ajax/download.php of the component Configuration File Handler. Performing a manipulation of the argument filename results in path traversal.

This vulnerability is reported as CVE-2018-25408. The attack is possible to be carried out remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More