Multiple directory traversal vulnerabilities in Maia Mailguard 1.0.2 and previous versions might allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) prevlang and (2) super parameters to (a) php/login.php; the (3) charset parameter to (a) php/login.php, (b) php/internal-init.php, and (c) php/xlogin.php; the (4) lang parameter to (b) php/internal-init.php; and the (5) language parameter to (c) php/xlogin.php.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
maia mailguard maia mailguard |
Vulmon