CVE-2020-22474
The CVE-2020-22474 issue affects webERP 4.15, where ManualContents.php mishandles the Language parameter, enabling local file inclusion (LFI). Affected component: ManualContents.php in webERP 4.15. Root cause: improper handling/validation of a user-supplied Language value that can cause local fil...