exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2012-1917

почти 14 лет назад

compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 does not properly handle ../ (dot dot slash) sequences in the unique parameter, which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ..././ (dot dot dot slash dot slash) sequence.

CVSS2: 5

EPSS: Низкий

CVE-2012-1917

почти 14 лет назад

compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 ...

CVSS2: 5

EPSS: Низкий

GHSA-jfrr-wvmc-mcq3

больше 3 лет назад

compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 does not properly handle ../ (dot dot slash) sequences in the unique parameter, which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ..././ (dot dot dot slash dot slash) sequence.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2012-1917 compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 does not properly handle ../ (dot dot slash) sequences in the unique parameter, which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ..././ (dot dot dot slash dot slash) sequence.	CVSS2: 5	1% Низкий	почти 14 лет назад
CVE-2012-1917 compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 ...	CVSS2: 5	1% Низкий	почти 14 лет назад
GHSA-jfrr-wvmc-mcq3 compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 does not properly handle ../ (dot dot slash) sequences in the unique parameter, which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ..././ (dot dot dot slash dot slash) sequence.		1% Низкий	больше 3 лет назад

Уязвимостей на страницу