Local File Inclusion Vulnerability in ExpertPDF 9.5.0 through 14.1.0: Unauthorized File Content Access

Local File Inclusion Vulnerability in ExpertPDF 9.5.0 through 14.1.0: Unauthorized File Content Access

CVE-2020-35340 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A local file inclusion vulnerability in ExpertPDF 9.5.0 through 14.1.0 allows attackers to read the file contents from files that the running ExpertPDF process has access to read.

Learn more about our Web Application Penetration Testing UK.