Information exposure vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This vulnerability allows an attacker to view a php backup file (controlaccess.php-LAST) where database credentials are stored.
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-opengnsys