N/A

IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion (LFI) vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of the targeted server.

N/A

N/A

IceWarp Mail Server 路径遍历漏洞

IceWarp Mail Server是捷克爱思华宝（IceWarp）公司的一款邮件服务器产品。该产品支持电子邮件归档、SmartAttach附件、自动迁移等。 IceWarp Mail Server v10.4.5版本存在安全漏洞，该漏洞源于组件/calendar/minimizer/index.php存在本地文件包含（LFI）漏洞。攻击者可利用该漏洞包含或执行目标服务器中的文件。

N/A

N/A