2 matches found
CVE-2008-0333
Directory traversal vulnerability in downloadviewattachment.aspx in AfterLogic MailBee WebMail Pro 4.1 for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the tempfilename parameter...
CVE-2008-0333
The CVE-2008-0333 issue concerns AfterLogic MailBee WebMail Pro for ASP.NET (version 4.1) where a directory traversal flaw in download_view_attachment.aspx allows reading arbitrary files via .. in the temp_filename parameter. Root cause: unvalidated input in the downloadViewAttachment endpoint en...