High severity7.5NVD Advisory· Published Oct 4, 2021· Updated Jun 17, 2026
CVE-2021-39433
CVE-2021-39433
Description
A local file inclusion (LFI) vulnerability exists in version BIQS IT Biqs-drive v1.83 and below when sending a specific payload as the file parameter to download/index.php. This allows the attacker to read arbitrary files from the server with the permissions of the configured web-user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- BIQS IT/Biqs-drivedescription
- Range: <=1.83
Patches
Vulnerability mechanics
References
2- github.com/PinkDraconian/CVE-2021-39433/blob/main/README.mdnvdExploitThird Party Advisory
- biqs-drive.benvdBroken Link
News mentions
0No linked articles in our index yet.