2 matches found
CVE-2015-5671
CVE-2015-5671 concerns Techno Project Japan’s Enisys Gw open-source groupware. Affected: Enisys Gw 1.4.0 and earlier. Root cause: failure to restrict access permissions, allowing a remote unauthenticated attacker to read arbitrary files uploaded to the product via unspecified vectors. Impact, as ...
CVE-2015-5671
Techno Project Japan Enisys Gw before 1.4.1 allows remote attackers to bypass intended access restrictions and read arbitrary uploaded files via unspecified vectors...