Directory traversal vulnerability in viewAttachment.cgi in W3Mail 1.0.6 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cascadesoft w3mail 1.0.6 |