Description
UnForm Server Manager versions prior to 10.1.12 expose an unauthenticated file read vulnerability via its log file analysis interface. The flaw resides in the arc endpoint, which accepts a fl parameter to specify the log file to be opened. Due to insufficient input validation and lack of path sanitization, attackers can supply relative paths to access arbitrary files on the host system — including sensitive OS-level files — without authentication.
References (4)
Core 4
Core References
Various Sources technical-description
exploit
https://gist.github.com/Janrdrz/3cf67a9ad488e07ceaacd7c1a7e59ae7
Various Sources product
https://synergetic-data.com/
Various Sources vendor-advisory
patch
https://unform.com/download/uf101_readme.txt
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/unform-server-manager-unauthenticated-arbitrary-file-read
Scores
CVSS v4
9.2
EPSS
0.0078
EPSS Percentile
51.2%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-22
Status
published
Products (1)
Synergetic Data Systems Inc./UnForm Server Manager
< 10.1.12
Published
Aug 13, 2025
Tracked Since
Feb 18, 2026