Horde IMP 2.2.7 allows remote malicious users to obtain the full web root pathname via an HTTP request for (1) poppassd.php3, (2) login.php3?reason=chpass2, (3) spelling.php3, and (4) ldap.search.php3?ldap_serv=nonsense which leaks the information in error messages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
horde imp 2.2.7 |