The vulnerability of the enterprise resource management system Galaktika ERP lies in the lack of access control for the GalSrv directory, allowing an intruder to execute arbitrary codes.

The vulnerability of the Galaktika ERP resource management system is related to deficiencies in access control for the GalSrv directory, which is used in a two-tier system architecture. Exploiting this vulnerability allows an attacker with privileges as USERS to execute arbitrary code by placing...