5 matches found
Exploit for Path Traversal in Hsclabs Mailinspector
HSC MailInspector - CVE-2024-34470 A critical vulnerabilit...
CVE-2024-34470
creationtimestamp| type| source ---|---|--- 2024-06-12 15:51:16+00:00| published-proof-of-concept| Telegram/Rc4aowQ97LYVVQDGxjBnVNF9nlBdJPyzpxpsubjMvnRZHA 2024-06-12 15:56:04+00:00| published-proof-of-concept| https://t.me/CNArsenal/2655 2024-06-19 09:56:32+00:00| published-proof-of-concept|...
CVE-2024-34470
CVE-2024-34470 affects HSC Mailinspector versions 5.2.17-3 through 5.2.18. It is an unauthenticated Local/File Inclusion in /public/loader.php where the path parameter can traverse outside the webroot due to insufficient validation, enabling read access to arbitrary server files (confidentiality ...
Exploit for Path Traversal in Hsclabs Mailinspector
CVE-2024-34470 Description: An Unauthenticated user can a...
Generic HTTP Directory Traversal / File Inclusion (Web Application URL Parameter) - Active Check
Generic check for HTTP directory traversal / file inclusion vulnerabilities within URL parameters of the remote web application. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...