WorkforceROI Xpede 4.1 uses a small random namespace (5 alphanumeric characters) for temporary expense claim reports in the /reports/temp directory, which allows remote malicious users to read the reports via a brute force attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
workforceroi xpede 4.1 |