CVE-2022-39034
CVE-2022-39034 concerns Smart eVision, where the Report API is vulnerable to a path traversal due to insufficient filtering of special URL characters. The vulnerability allows a remote user with general (low) privileges to bypass authentication, access restricted paths, and download system files....