CVE-2019-4384
IBM Campaign versions 9.1.2 and 10.1 are affected by a directory traversal vulnerability allowing a remote attacker to view arbitrary files via crafted URLs containing dot-dot sequences (../). Root cause is related to insufficient validation of URL paths, enabling traversal to restricted files. I...