Partial Local File Inclusion (LFI)
What is a Local File Inclusion?Local File Inclusion (LFI) is a type of vulnerability that occurs when a web application allows an attacker to include or read files on the…
What is a Local File Inclusion?Local File Inclusion (LFI) is a type of vulnerability that occurs when a web application allows an attacker to include or read files on the…
Improper Privilege Management in Chatwoot prior to v2.2 - CVE-2021-3813 A user without collaborator access to an Inbox is able to reveal the messages from it, by guessing the ID…
Found authentication bypass with CVSS 7,5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Found XXE to local file exfiltration with CVSS 6,5 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Found Session Fixation with CVSS 4,4 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N