Primary

Context

webERP Unauthenticated Backup File Access Vulnerability

Vulnerability

A vulnerability in webERP version 4.15.1 allows remote attackers to access and download database backup files without authentication. The issue arises from unauthenticated file access in the 'companies/weberp/' directory, where generated backup files can be directly accessed by requesting them via their timestamped filenames. This vulnerability is classified under CWE-552, which pertains to files or directories accessible to external parties.

Impact

Exploitation of this vulnerability allows for unauthorized access to sensitive database backup files, which could contain confidential information.

Reproduction

To reproduce this vulnerability, upload a database backup file using the 'BackUpDatabase.php' file. Once the backup is created, it can be downloaded from the 'companies/weberp/' directory by requesting the file named 'Backup_[timestamp].sql.gz'.

Added: Feb 3, 2026, 10:44 PM

Updated: Feb 3, 2026, 10:44 PM

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

9.5

remediation

0.0

relevance

2.5

threat

6.4

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

9.5

remediation

0.0

relevance

2.5

threat

6.4

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

webERP Unauthenticated Backup File Access Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

webERP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating