CVE-2024-1114 | openBI up to 1.0.8 Screen.php dlfile fileUrl access control

CVE-2024-1114 | openBI up to 1.0.8 Screen.php dlfile fileUrl access control

A vulnerability has been found in openBI up to 1.0.8 and classified as critical. This vulnerability affects the function dlfile of the file /application/index/controller/Screen.php. The manipulation of the argument fileUrl leads to improper access controls. This vulnerability was named CVE-2024-1114. The attack can be initiated remotely. Furthermore, there is an exploit available.