exploitDog

CVE-2005-0313

Опубликовано: 27 янв. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple directory traversal vulnerabilities in Magic Winmail Server 4.0 Build 1112 allow remote attackers to (1) upload arbitrary files via certain parameters to upload.php or (2) read arbitrary files via certain parameters to download.php, and remote authenticated users to read, create, or delete arbitrary directories and files via the IMAP commands (3) CREATE, (4) EXAMINE, (5) SELECT, or (6) DELETE.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:amax_information_technologies:magic_winmail_server:4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.07954

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5q34-v6j2-j4rj

github

почти 4 года назад

Multiple directory traversal vulnerabilities in Magic Winmail Server 4.0 Build 1112 allow remote attackers to (1) upload arbitrary files via certain parameters to upload.php or (2) read arbitrary files via certain parameters to download.php, and remote authenticated users to read, create, or delete arbitrary directories and files via the IMAP commands (3) CREATE, (4) EXAMINE, (5) SELECT, or (6) DELETE.

EPSS

Процентиль: 92%

0.07954

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other