Using the parameter of getPFXFolderList function, attackers can see the information of authorization certification and delete the files. It occurs because the parameter contains path traversal characters(ie. '../../../')
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hancom anysign4pc 1.1.1.0 |
||
hancom anysign4pc 1.1.2.6 |
||
hancom anysign4pc 1.1.2.7 |