CVE-2024-42680 Information

Description

An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to obtain the server absolute path by entering a single quotation mark.

Reference

https://github.com/WarmBrew/web_vul/blob/main/CYGLXT/CYinfo.md