3 matches found
Arbitrary User Password Change Vulnerability in AnyMacro Email System Used by Multiple Organizations
AnyMacro is a professional product and solution provider in the field of email and unified messaging. A security vulnerability exists in the AnyMacro email system due to the failure of the user password recovery function to properly verify user passwords. This vulnerability allows an attacker to...
Anymacro 邮件系统任意文件下载漏洞(需登陆)
简要描述: 详细说明: 在mailattrFw.php中 其中$Fcid可控,从客户端获取,可以通过../跳转字符,跳转到相应目录进行读取。。 如默认状态下$SESSION'maildir'为:/mail/xxx.com/xxx/Maildir/ $Fcid可设置为:../../../../../etc/passwd 即可读取passwd内容 漏洞证明:...
Anymacro 邮件系统最新版SQL注入漏洞
简要描述: 厂商一直回复说,不是最新版的,现在我就捅几枚最新版的菊花出来,谢谢。。。 详细说明: 0x001 anymacro是国内较流行的一家企业级邮箱系统,客户主要为教育/政府机构。 今天所发现的SQL注入影响所有Anymacro所有邮件系统。 0x002 漏洞分析 本次属于黑盒测试。。。 漏洞点在网盘处,在下载里面的附件的时候,由于参数未进行判断,导致产生SQL注入漏洞 https://mail.xxx.com/down.php?netdisk=1...