The ‘document’ parameter of PDS Vista 7’s /application/documents/display.aspx page is vulnerable to a Local File Inclusion vulnerability which allows an low-privileged authenticated attacker to leak the configuration files and source code of the web application.
CPE | Name | Operator | Version |
---|---|---|---|
pds_vista_7 | lt | 7.1.7.2 |