CVE-2016-10734

Severity CVSS v4.0:
Pending analysis
Type:
CWE-285 Improper Authorization
Publication date:
29/10/2018
Last modified:
17/06/2026

Description

ProjectSend (formerly cFTP) r582 allows Insecure Direct Object Reference via includes/actions.log.export.php.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:projectsend:projectsend:582:*:*:*:*:*:*:*