CVE-2018-18863 ResourceLink Local File Inclusion
In a recent penetration test ResourceLink version 20.0.2.1 was found to be vulnerable to local file inclusion (LFI). ResourceLink is a payroll web application that allows HR departments to manage payments and employees’ bank account details. LFI allows an attacker to include the contents of another file hosted on the