Описание
Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.
Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-5383
- https://github.com/roundcube/roundcubemail/issues/4816
- https://github.com/roundcube/roundcubemail/commit/012555c1cef35601b543cde67bff8726de97eb39
- https://roundcube.net/news/2015/06/05/updates-1.1.2-and-1.0.6-released
- http://www.openwall.com/lists/oss-security/2015/07/07/2
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 8 лет назад
Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.
CVSS3: 7.5
nvd
больше 8 лет назад
Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.
CVSS3: 7.5
debian
больше 8 лет назад
Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain ...