2 matches found
CVE-2018-15631
Improper access control in the Discuss App of Odoo Community 12.0 and earlier, and Odoo Enterprise 12.0 and earlier allows remote authenticated attackers to e-mail themselves arbitrary files from the database, via a crafted RPC request...
CVE-2018-15631
Summary: CVE-2018-15631 affects the Discuss App in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier. It is caused by improper access control, enabling remote authenticated attackers to email themselves arbitrary files from the database via a crafted RPC request. The issue has ...