CVE-2021-26630
The CVE is about an improper input validation vulnerability in HANDY Groupware’s ActiveX module that allows attackers to download or execute arbitrary files by passing the file download or execution path as the parameter value of the vulnerable function. Affected products are HANDY Groupware with...