CVE-2016-10732
-
ProjectSend (formerly cFTP) r582 allows authentication bypass via a direct request for users.php, home.php, edit-file.php?file_id=1, or process-zip-download.php, or add_user_form_* parameters to users-add.php.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10732
© Lightnetics 2024