Description
TestRail is a web-based test management tool
Invicti determined that it was possible to access 'files.md5' without authentication.
Remediation
Upgrade to the latest version of TestRail
References
Related Vulnerabilities
Chamilo URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-9540)
Internet Information Services Other Vulnerability (CVE-1999-1538)
PrestaShop Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2021-21302)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3195)