Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and possibly earlier, allow remote authenticated domain administrators to change a global administrator's password and gain privileges via the userlist.wdm file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MDaemon、RelayFax和WorldClient WebAdmin logfile_view.wdm和configfile_view.wdm文件权限提升漏洞
Vulnerability Description
WebAdmin是Alt-N开发的管理MDaemon、RelayFax和WorldClient的WEB应用程序。 由于没有正确的过滤管理界面的logfile_view.wdm和configfile_view.wdm文件,导致已认证的全局管理员可以通过类似于以下的方式访问基础文件系统: http://mdaemon:1000/configfile_view.wdm?file=../../autoexec.bat http://mdaemon:1000/logfile_view.wdm?type=webadm
CVSS Information
N/A
Vulnerability Type
N/A