Comingchina » U-mail Webmail Server : Security Vulnerabilities, CVEs, CVSS score >= 5
webmail/modules/filesystem/edit.php in U-Mail Webmail server 4.91 allows remote attackers to overwrite arbitrary files via an absolute pathname in the path parameter and arbitrary content in the content parameter. NOTE: this can be leveraged for code execution by writing to a file under the web document root.
Max CVSS
9.0
EPSS Score
4.58%
Published
2008-11-05
Updated
2018-10-11
1 vulnerabilities found