Directory Traversal Vulnerability in Schneider Electric U.motion Builder Software

Directory Traversal Vulnerability in Schneider Electric U.motion Builder Software

CVE-2018-7763 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The vulnerability exists within css.inc.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The 'css' parameter contains a directory traversal vulnerability.

Learn more about our Web Application Penetration Testing UK.