There is a potential directory traversal in the component IS-R-LG-RMA.
The report RWRF_ORGPRICE_SETUP contains a vulnerability through which a malicious user can potentially read arbitrary files on the remote server, possibly disclosing confidential information.
Available fix and Supported packages
- EA-RETAIL | 603 | 603
- EA-RETAIL | 604 | 604
- EA-RETAIL | 605 | 605
- EA-RETAIL 603 | SAPK-60308INEARETAIL |
- EA-RETAIL 604 | SAPK-60409INEARETAIL |
- EA-RETAIL 605 | SAPK-60504INEARETAIL |
Retail Method of Accounting
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.