Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-26294
HistoryMar 07, 2021 - 4:15 a.m.

Directory traversal

2021-03-0704:15:00
PRIOn knowledge base
www.prio-n.com

7.4 High

AI Score

Confidence

High

0.22 Low

EPSS

Percentile

96.5%

JSON

An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail Pro through 7.7.9. They allow directory traversal to read files (such as a data/settings/settings.xml file containing admin panel credentials), as demonstrated by dav/server.php/files/personal/%2e%2e when using the caldav_public_user account (with caldav_public_user as its password).

CPENameOperatorVersion
aurorale7.7.9
webmail_prole7.7.9

Related

cve 1
nuclei 1
nvd 1
cvelist 1
githubexploit 1
seebug 1
cve
cve
CVE-2021-26294
2021-03-07 04:15:12
nuclei
nuclei
AfterLogic Aurora and WebMail Pro < 7.7.9 - Information Disclosure
2023-11-24 00:43:23
nvd
nvd
CVE-2021-26294
2021-03-07 04:15:12
cvelist
cvelist
CVE-2021-26294
2021-03-07 03:42:34
githubexploit
githubexploit
Exploit for Path Traversal in Afterlogic Aurora
2021-11-03 14:32:13
seebug
seebug
AfterLogic 多个安全漏洞(CVE-2021-26292 CVE-2021-26293 CVE-2021-26294)
2021-03-29 00:00:00

7.4 High

AI Score

Confidence

High

0.22 Low

EPSS

Percentile

96.5%

JSON
Related for PRION:CVE-2021-26294
cve1nuclei1nvd1cvelist1githubexploit1seebug1