CVE-2021-27235

An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. On the admin portal of the web application, there is a functionality at diagzip.asp that allows anyone to export tables of a database. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt