attachment.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allows remote malicious users to view other users' attachments by specifying the username and message ID in an HTTP request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
icewarp web mail 5.2.7 |
||
icewarp web mail 5.2.8 |
||
icewarp web mail 3.3.2 |