Description
SAP Portal fails to correctly validate the path with which a file that is read from the remote server is referenced. Through this, an attacker can potentially point the program to an arbitrary other file on the system, disclosing its contents.
Remediation
Install SAP security note 1630293.
References
Related Vulnerabilities
WordPress 5.4.x Directory Traversal (5.4 - 5.4.15)
WordPress Plugin SAM Pro (Free Edition) Local File Inclusion (1.9.6.67)
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Directory Traversal (5.5.4)
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Multiple Vulnerabilities (5.5.3)
WordPress Plugin zM Ajax Login & Register Multiple Vulnerabilities (1.0.9)