Directory traversal vulnerability exists in A.K.I Softwareβs PMailServer/PMailServer2 productsβ CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot.
[
{
"vendor": "A.K.I Software",
"product": "pmman.exe (Standard edition)",
"versions": [
{
"version": "2.5.1.12154 and earlier",
"status": "affected"
}
]
},
{
"vendor": "A.K.I Software",
"product": "pmman.exe (Pro edition)",
"versions": [
{
"version": "2.5.1.12155 and earlier",
"status": "affected"
}
]
},
{
"vendor": "A.K.I Software",
"product": "pmman.exe (Standard + IMAP4 edition)",
"versions": [
{
"version": "2.5.1.12156 and earlier",
"status": "affected"
}
]
},
{
"vendor": "A.K.I Software",
"product": "pmman.exe (Pro + IMAP4 edition)",
"versions": [
{
"version": "2.5.1.12157 and earlier",
"status": "affected"
}
]
},
{
"vendor": "A.K.I Software",
"product": "pmman.exe (Enterprise edition)",
"versions": [
{
"version": "2.5.1.12158 and earlier",
"status": "affected"
}
]
}
]