2 matches found
CVE-2023-4593
CVE-2023-4593 describes a path traversal vulnerability in BVRP Software SLmail. An authenticated remote user could bypass restrictions and enumerate files/directories outside the web root by manipulating the dodoc parameter in the /MailAdmin_dll.htm (MailAdmin dll.htm) entry, potentially exposing...
CVE-2023-4593 Path Traversal in BVRP Software SLmail
Path traversal vulnerability whose exploitation could allow an authenticated remote user to bypass SecurityManager's intended restrictions and list a parent directory via any filename, such as a multiple ..%2F value affecting the 'dodoc' parameter in the /MailAdmindll.htm file...