CVE-2020-11594

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make an API request that causes a stack error to be shown providing the full file path.

Date published : 2020-04-06

https://www.criticalstart.com/vulnerabilities-discovered-in-cipace-enterprise-platform/