Description
In webERP 4.15, Z_CreateCompanyTemplateFile.php has Incorrect Access Control, leading to the overwrite of an existing .sql file on the target web site by creating a template and then using ../ directory traversal in the TemplateName parameter.
Remediation
References
Related Vulnerabilities
PHP-Fusion Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-3172)
WordPress Other Vulnerability (CVE-2006-1796)
Apache Denial of service in mod_lua r:parsebody Vulnerability (CVE-2022-29404)
WordPress Plugin WordPress Survey & Poll-Quiz, Survey and Poll PHP Object Injection (1.5.5)
Joomla Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-12765)