config/config_inc.php in iGENUS Webmail 2.02 and previous versions allows remote malicious users to include arbitrary local files via the SG_HOME parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
igenus igenus webmail 2.0 |
||
igenus igenus webmail 2.01 |
||
igenus igenus webmail 2.02 |