Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Web Based Administration in MicroWorld Technologies MailScan 5.6.a espatch 1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to determine the installation path, IP addresses, and error messages via direct requests to files under LOG/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MicroWorld MailScan Web控制台 信息泄露漏洞
Vulnerability Description
MailScan是一款邮件服务器实时杀毒和反垃圾邮件软件。 MailScan 5.6.a espatch1 版本的Web管理控制台存在信息泄露漏洞。 由于该版本软件将一些私密信息保存在Web目录下,且对访问权限没有限制,远程攻击者可直接访问LOG/下的文件,获取软件安装路径、IP地址、错误信息等内容。
CVSS Information
N/A
Vulnerability Type
N/A