The Roundcube component of Analogic... CVE-2019-12938

4.0 AV AC AU C I A
发布: 2019-06-24
修订: 2019-11-20

The Roundcube component of Analogic Poste.io 2.1.6 uses .htaccess to protect the logs/ folder, which is effective with the Apache HTTP Server but is ineffective with nginx. Attackers can read logs via the webmail/logs/sendmail URI.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息