A directory traversal vulnerability in IdeaRE RefTree prior to 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadDwg endpoint. An attack uses the path field to CaddemServiceJS/CaddemService.svc/rest/DownloadDwg.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
idearespa reftree |