Directory traversal vulnerability in chat/openattach.aspx in ReadyDesk 9.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the SESID parameter in conjunction with a filename in the FNAME parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
readydesk readydesk 9.1 |