A local file inclusion vulnerability in the upload/download flow of the VertiGIS FM application allows authenticated attackers to read arbitrary files from the server by manipulating a file's path dur

Description

A local file inclusion vulnerability in the upload/download flow of the VertiGIS FM application allows authenticated attackers to read arbitrary files from the server by manipulating a file's path during its upload. When the file is subsequently downloaded, the file in the attacker controlled path is returned. Due to the application's ASP.NET architecture, this could potentially lead to remote code execution when the "web.config" file is obtained. Furthermore, the application resolves UNC paths which may enable NTLM-relaying attacks. This issue affects VertiGIS FM: 10.5.00119 (0d29d428).

Affected Products

Vendor	Product	Versions
VertiGIS	FM	10.11.362

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
vertigis	fm	cert_advisory	90%

References

Related News (2 articles)

Tier B

BSI Advisories22h ago

[NEU] [hoch] VertiGIS FM: Mehrere Schwachstellen

→ No new info (linked only)

Tier C

VulDB1d ago

CVE-2026-0522 | VertiGIS FM up to 10.11.362 external reference

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

CWECWE-610

PublishedApr 1, 2026

Last enriched1d agov2

Trending Score29

Source articles2

Independent2

Info Completeness7/14

Missing: cvss, epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

A local file inclusion vulnerability in the upload/download flow of the VertiGIS FM application allows authenticated attackers to read arbitrary files from the server by manipulating a file's path dur

Description

Affected Products

Also Affects

References

Related News (2 articles)

Community Vote

Related CVEs (1)

Pin to Dashboard

Verification

Vulnerability Timeline

Version History