MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allows remote authenticated users to gain sensitive information via an HTTP request to (1) calendar_d.html, (2) calendar_m.html, (3) calendar_w.html, or (4) calendar_y.html, which reveal the installation path.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
merak mail server 7.6.0 |
||
icewarp web mail 5.3.0 |