CVE-2018-25408

Name of the Vulnerable Software and Affected Versions The Open ISES Project version 3.30A

Description A path traversal issue exists in the 'ajax/download.php' endpoint. Unauthenticated attackers can download arbitrary files, including system and configuration files, by manipulating the filename parameter using directory traversal sequences such as ../. Path traversal is a technique that allows an attacker to access files and directories that are stored outside the web root folder.

Recommendations As a temporary workaround, restrict access to the 'ajax/download.php' endpoint or avoid using the filename parameter until a fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.