2021-07-25 20:08:26
mitre
PUBLISHED
In NCH WebDictate v2.13 and earlier, authenticated users can abuse logprop?file=/.. path traversal to read files on the filesystem.