accountsettings_add.html in Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7 and possibly other versions allow remote malicious users to create text files with arbitrary content via the accountid parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
icewarp web mail 5.2.7 |
||
icewarp web mail 5.2.8 |
||
icewarp web mail 3.3.2 |