CVE-2017-7281
CVE-2017-7281 affects Unitrends Enterprise Backup prior to 9.1.2. The vulnerability is due to unsanitized user input in recoveryconsole/bpl/reports.php (createReportName and saveReport), allowing an authenticated user to create a file on disk with a user-controlled extension, content, and path, r...