Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple directory traversal vulnerabilities Merak Mail Server 7.4.5 with Icewarp Web Mail 5.2.7, and possibly other versions, allow remote attackers to (1) create arbitrary directories via a .. (dot dot) in the user parameter to viewaction.html or (2) rename arbitrary files via a ....// (doubled dot dot) in the folderold or folder parameters to folders.html.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IceWarp Web Mail多个未明远程输入验证漏洞
Vulnerability Description
带有Icewarp Web Mail 5.2.7以及可能其他版本的Merak Mail Server 7.4.5存在多个目录遍历漏洞。远程攻击者(1)借助viewaction.html的user参数的.. (点 点)创建任意目录或者(2)借助folders.html的folderold或者folder参数的....// (两倍点 点)重命名任意文件。
CVSS Information
N/A
Vulnerability Type
N/A