CVE-2015-8794 in RoundCubeजानकारी

सारांश

द्वारा MITRE

Absolute path traversal vulnerability in program/steps/addressbook/photo.inc in Roundcube before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via a full pathname in the _alt parameter, related to contact photo handling.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

आरक्षित करना

29/01/2016

प्रकटीकरण

29/01/2016

प्रविष्टि

VDB-80732

EPSS

0.02119

गतिविधियाँ

बहुत कम

क्षेत्र

Chemical, Hostingprovider, ...

स्रोत

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!