Open Business Management (OBM) 2.4.0-rc13 and earlier allows remote attackers to obtain configuration information via a direct request to test.php, which calls the phpinfo function.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Open_business_management |
Obm |
* |
2.4.0 (including) |
References