CVE-2024-3706 Information

Description

Information exposure vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This vulnerability allows an attacker to view a php backup file (controlaccess.php-LAST) where database credentials are stored.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-opengnsys