Directory traversal vulnerability in the load function in cgi-bin/mail/mailmachine.cgi in Mail Machine 3.989 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the archives parameter in a Load action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mail machine mail machine 3.987 |
||
mail machine mail machine 3.988 |
||
mail machine mail machine 3.989 |
||
mail machine mail machine 3.980 |
||
mail machine mail machine 3.985 |