CVE-2019-17324
CVE-2019-17324 affects ClipSoft REXPERT ≤ 1.0.0.527. A directory traversal flaw is exploitable by sending a crafted HTTP POST containing ".." characters, enabling an attacker to access outside restricted directories and potentially create a malicious HTML file via template injection. Exploitation...