netOffice Dwins Authentication Bypass Vulnerability and Arbitrary File Upload Vulnerability

netOffice Dwins Authentication Bypass Vulnerability and Arbitrary File Upload Vulnerability

netOffice Dwins is prone to a vulnerability that allows attackers to bypass authentication as well as a vulnerability that allows attackers to upload arbitrary files. These issues occur because the application fails to adequately sanitize user-supplied input.

Attackers can leverage these issues to gain unauthorized access to the application and to execute arbitrary code in the context of the application.

These issues affect Dwins 1.3 p2; other versions may also be affected.