Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
basilix basilix webmail 1.02_beta |
||
basilix basilix webmail 1.03_beta |