Name of the Vulnerable Software and Affected Versions Galaktika ERP (affected versions not specified)

Description The issue is related to architectural weaknesses in components (*.res files) of the Galaktika ERP system, which have the functionality to export to XML files. Exploitation of this issue may allow a remote attacker to read or overwrite arbitrary files on the server by specifying the path to them in the Каталог and Файл fields.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.