search.results.php in HiveMail 3.1 and previous versions allows remote malicious users to obtain the installation path via certain manipulations related to the (1) searchdate and (2) folderids parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hivemail hivemail 1.1 |
||
hivemail hivemail 1.1.1 |
||
hivemail hivemail 1.3_beta1 |
||
hivemail hivemail 1.3_rc1 |
||
hivemail hivemail 1.2 |
||
hivemail hivemail 1.2.1_beta1 |
||
hivemail hivemail |
||
hivemail hivemail 1.2.1_rc |
||
hivemail hivemail 1.2.2 |
||
hivemail hivemail 1.2_sp1 |
||
hivemail hivemail 1.3 |