GHSA-5v7m-6h74-672rMediumCVSS 6.5

openSIS Classic 9.3 contains an authenticated path traversal vulnerability in the legacy...

Published
July 14, 2026
Last Modified
July 14, 2026

🔗 CVE IDs covered (1)

📋 Description

openSIS Classic 9.3 contains an authenticated path traversal vulnerability in the legacy messaging sent-mail attachment download functionality that allows an authenticated attacker to read arbitrary files on the server via crafted path traversal sequences.

🔗 References (4)