Uebimiau Webmail 3.2.0-2.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database with usernames and password hashes via a direct request for system_admin/admin.ucf.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
uebimiau uebimiau 3.2.0-2.0 |