Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-7091
HistoryDec 13, 2013 - 6:07 p.m.

CVE-2013-7091

2013-12-1318:07:54
CWE-22
[email protected]
web.nvd.nist.gov
96
cve-2013-7091
directory traversal
zimbra
remote code execution
cve
information security

9.3 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

JSON

Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2 allows remote attackers to read arbitrary files via a … (dot dot) in the skin parameter. NOTE: this can be leveraged to execute arbitrary code by obtaining LDAP credentials and accessing the service/admin/soap API.

CPE configuration

NVD
synacorzimbra_collaboration_suiteMatch6.0.0
OR
synacorzimbra_collaboration_suiteMatch6.0.1
OR
synacorzimbra_collaboration_suiteMatch6.0.2
OR
synacorzimbra_collaboration_suiteMatch6.0.3
OR
synacorzimbra_collaboration_suiteMatch6.0.4
OR
synacorzimbra_collaboration_suiteMatch6.0.5
OR
synacorzimbra_collaboration_suiteMatch6.0.6
OR
synacorzimbra_collaboration_suiteMatch6.0.7
OR
synacorzimbra_collaboration_suiteMatch6.0.8
OR
synacorzimbra_collaboration_suiteMatch6.0.9
OR
synacorzimbra_collaboration_suiteMatch6.0.10
OR
synacorzimbra_collaboration_suiteMatch6.0.12
OR
synacorzimbra_collaboration_suiteMatch6.0.13
OR
synacorzimbra_collaboration_suiteMatch6.0.14
OR
synacorzimbra_collaboration_suiteMatch6.0.15
OR
synacorzimbra_collaboration_suiteMatch6.0.16
CPENameOperatorVersion
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.0
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.1
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.2
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.3
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.4
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.5
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.6
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.7
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.8
synacor:zimbra_collaboration_suitesynacor zimbra collaboration suiteeq6.0.9
Rows per page:
1-10 of 161

Related

checkpoint_advisories 1
prion 2
zdt 1
packetstorm 1
nuclei 1
seebug 1
dsquare 1
cvelist 2
nessus 1
openvas 1
nvd 2
cve 1
nmap 1
checkpoint_advisories
checkpoint_advisories
Zimbra Collaboration Server Local File Inclusion (CVE-2013-7091)
2014-01-12 00:00:00
prion
prion
Directory traversal
2013-12-13 18:07:00
Design/Logic Flaw
2013-12-26 18:55:00
zdt
zdt
Zimbra Collaboration Server LFI Vulnerability
2013-12-24 00:00:00
packetstorm
packetstorm
Zimbra Collaboration Server LFI
2013-12-23 00:00:00
nuclei
nuclei
Zimbra Collaboration Server 7.2.2/8.0.2 Local File Inclusion
2022-01-21 07:32:08
seebug
seebug
Zimbra邮件系统文件包含漏洞
2013-12-13 00:00:00
dsquare
dsquare
Zimbra iCollaboration Server LFI
2016-08-27 00:00:00
cvelist
cvelist
CVE-2013-7091
2013-12-13 18:00:00
CVE-2013-7217
2013-12-26 18:00:00
nessus
nessus
Zimbra Collaboration Server skin Parameter Traversal Local File Inclusion
2014-02-19 00:00:00
openvas
openvas
Zimbra < 7.0.0 LFI Vulnerability - Active Check
2013-12-11 00:00:00
nvd
nvd
NVD:CVE-2013-7091
2013-12-13 18:07:54
NVD:CVE-2013-7217
2013-12-26 18:55:04
cve
cve
CVE-2013-7217
2013-12-26 18:55:04
nmap
nmap
http-vuln-cve2013-7091 NSE Script
2014-05-04 15:11:23

9.3 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

JSON
Related for CVE-2013-7091
checkpoint_advisories1prion2zdt1packetstorm1nuclei1seebug1dsquare1cvelist2nessus1openvas1nvd2cve1nmap1