Medium severity6.5NVD Advisory· Published Feb 22, 2021· Updated Jun 17, 2026
CVE-2020-22474
CVE-2020-22474
Description
In webERP 4.15, the ManualContents.php file allows users to specify the "Language" parameter, which can lead to local file inclusion.
Affected products
2- webERP/webERPdescription
Patches
Vulnerability mechanics
References
1- lyhinslab.org/index.php/2020/05/16/weberp-lfi/nvdExploitPatchThird Party Advisory
News mentions
0No linked articles in our index yet.