Uebimiau Webmail allows remote malicious users to obtain sensitive information via a request to demo/pop3/error.php with an invalid value of the (1) smarty or (2) selected_theme parameter, which reveals the path in various error messages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
uebimiau uebimiau 2.7.10 |
||
uebimiau uebimiau 2.7.2 |
||
uebimiau uebimiau 2.7.9 |