CVE-2019-19264
CVE-2019-19264 affects Simplifile RecordFusion up to 2019-11-25. The vulnerability is a local-file disclosure via logger/logs?/../ or logger/hist?/../ URIs in the logs and hist parameters, enabling remote attackers to access local files. The NVD lists CVSS2/3.1 base scores of 5.0 (medium) and 7.5...