Arbitrary File Containment Vulnerability in UFIDA Financials
UFIDA Financials is a financial management software. UFIDA Financial System has an arbitrary file inclusion vulnerability. The vulnerability url is: http://target/TaskManager/TaskServiceServlet?m=1&taskname=... /... /WEB-INF/web.xml%00, attackers can use the vulnerability to obtain database...