ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2017-20101)
Description
A vulnerability, which was classified as problematic, was found in ProjectSend r754. This affects an unknown part of the file process.php?do=zip_download. The manipulation of the argument client/file leads to information disclosure. It is possible to initiate the attack remotely.