CVE-2018-7806
Schneider Electric StruxureWare Data Center Operation is affected by CVE-2018-7806 due to a ZipSlip-style path traversal vulnerability in its file-upload feature. A authenticated user can upload a crafted ZIP containing path traversal file names, which could cause arbitrary files to be written to...