MetInfo 5.3.17 Directory Traversal Vulnerability

MetInfo 5.3.17 Directory Traversal Vulnerability

CVE-2017-14513 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Directory traversal vulnerability in MetInfo 5.3.17 allows remote attackers to read information from any ini format file via the f_filename parameter in a fingerprintdo action to admin/app/physical/physical.php.

Learn more about our Physical Security Assessment.