Mailtraq 2.2 - Webmail Utility Full Path Disclosure
| EKU-ID: 28206 | CVE: | OSVDB-ID: |
| Author: Ziv Kamir | Published: 2003-06-04 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28206 | CVE: | OSVDB-ID: |
| Author: Ziv Kamir | Published: 2003-06-04 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/7815/info A vulnerability has been reported for Mailtraq that may result in the disclosure of path information. The vulnerability exists due to insufficient sanitization of HTTP requests. Specifically, a request for non-existent resources will result in an error message being returned that includes path information. http://10.10.10.1/browse.asp*