The ‘document’ parameter of PDS Vista 7’s /application/documents/display.aspx page is vulnerable to a Local File Inclusion vulnerability which allows an low-privileged authenticated malicious user to leak the configuration files and source code of the web application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pdssoftware pds vista 7 |