7 matches found
VulnCheck KEV: CVE-2019-12593
IceWarp Mail Server through 10.4.4 is prone to a local file inclusion vulnerability via webmail/calendar/minimizer/index.php?style=..%5c directory traversal...
CVE-2023-39699
IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion LFI vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of the targeted server...
CVE-2023-39699
IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion LFI vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of the targeted server...
PT-2023-27075 · Icewarp · Icewarp Mail Server
Name of the Vulnerable Software and Affected Versions: IceWarp Mail Server version 10.4.5 Description: The issue is related to a local file inclusion LFI vulnerability. It affects the /calendar/minimizer/index.php component, allowing attackers to include or execute files from the local file syste...
IceWarp Mail Server 路径遍历漏洞
IceWarp Mail Server is a mail server product from the Czech company IceWarp IceWarp. The product supports email archiving, SmartAttach attachments, automatic migration, and more. A security vulnerability exists in IceWarp Mail Server version v10.4.5, which originates from a Local File Inclusion L...
CVE-2023-39699
CVE-2023-39699 affects IceWarp Mail Server v10.4.5 via a Local File Inclusion (LFI) in the /calendar/minimizer/index.php component. The vulnerability allows an attacker to include or execute files from the server’s local filesystem. Documented impact is high (potential code execution/unauthorized...
Directory traversal
Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a 1 .. dot dot in the file parameter to a webmail/client/skins/default/css/css.php page or .../. dot dot dot slash dot in the 2 script or 3 style parameter to...