Vulnerabilities (CVE)

Filtered by vendor Biqs Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-39433 1 Biqs 1 Biqsdrive 2024-11-21 5.0 MEDIUM 7.5 HIGH
A local file inclusion (LFI) vulnerability exists in version BIQS IT Biqs-drive v1.83 and below when sending a specific payload as the file parameter to download/index.php. This allows the attacker to read arbitrary files from the server with the permissions of the configured web-user.