CVE-2018-7668

TestLink through 1.9.16 allows remote attackers to read arbitrary attachments via a modified ID field to /lib/attachments/attachmentdownload.php.
References
Configurations

Configuration 1

cpe:2.3:a:testlink:testlink:*:*:*:*:*:*:*:*

Information

Published : 2018-03-05 07:29

Updated : 2018-03-27 05:57


NVD link : CVE-2018-7668

Mitre link : CVE-2018-7668

Products Affected
No products.
CWE