CVE-2019-9886

Publication date

2019-07-11 18:21:51

Family

twcert

State

PUBLISHED

Description

Any URLs with download_attachment.php under templates or home folders can allow arbitrary files downloaded without login in BroadLearning eClass before version ip.2.5.10.2.1.