Lucene search

K
cvelistMitreCVELIST:CVE-2015-5382
HistoryMay 23, 2017 - 3:56 a.m.

CVE-2015-5382

2017-05-2303:56:00
mitre
www.cve.org

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.1%

program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the _alt parameter when uploading a vCard.

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.1%