RSS   Vulnerabilities for 'Axigen free mail server'   RSS



Multiple directory traversal vulnerabilities in the View Log Files component in Axigen Free Mail Server allow remote attackers to read or delete arbitrary files via a .. (dot dot) in (1) the fileName parameter in a download action to source/loggin/page_log_dwn_file.hsp, or the fileName parameter in (2) an edit action or (3) a delete action to the default URI.


 >>> Vendor: Gecad 2 Products
Axigen mail server
Axigen free mail server

Copyright 2017,


Back to Top