Directory Traversal Vulnerability in Openbravo ERP before 3.0PR19Q1.3

Directory Traversal Vulnerability in Openbravo ERP before 3.0PR19Q1.3

CVE-2019-14362 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:N

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value.

Learn more about our Cis Benchmark Audit For Server Software.