CVE-2017-14404

Published: 2017-09-13T03:29Z

Last Modified: 2024-11-21T03:12Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows local file inclusion via the tool_list parameter (aka the url_tool variable) to module/tool_all/select_tool.php, as demonstrated by a tool_list=php://filter/ substring. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt