Directory traversal vulnerability in EspoCRM before 2.6.0 allows remote attackers to include and execute arbitrary local files via a .. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
Path Traversal
PHP
Espocrm
NVD
CVSS 2.0
10.0
EPSS
1.7%