CVE-2019-7305

Name of the Vulnerable Software and Affected Versions eXtplorer (affected versions not specified)

Description The issue allows the /usr/ and /etc/extplorer/ system directories to be world-accessible over HTTP, potentially leading to data leakage, information disclosure, and remote code execution on the web server. This is due to changes introduced in the Makefile patch files debian/patches/debian-changes-2.1.0b6+dfsg-1 or debian/patches/adds-a-makefile.patch.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.